[Bridge] Feature enhancement - Disable unicast flooding

Stephen Hemminger shemminger at linux-foundation.org
Mon Apr 16 11:11:37 PDT 2007

On Mon, 16 Apr 2007 10:29:31 +1200
Dylan Hall <dylan at citylink.co.nz> wrote:

> For the project I'm working on I require that the bridging code not
> flood unicast frames when the destination mac address is unknown,
> similar to Cisco's "switchport block unicast" feature
> (http://www.cisco.com/en/US/products/ps6406/products_configuration_guide_chapter09186a00805a761a.html#wp1087814).
> I have produced a small patch (against to control this feature
> per bridge (rather than per port like a Cisco).
> Have I gone about implementing this correctly?
> Is this something other people may find useful, and hence worth
> incorporating into the mainstream code?
> Is it worth the effort of taking this one step further, and controlling
> the behaviour per port rather than per bridge?
> Thanks,
> Dylan

Maybe. But this kind of thing is better done with a ebtables module.
That way it can be more easily integrated with other security stuff.

More information about the Bridge mailing list