Re: iptables / bridge mode

To: debian-firewall@lists.debian.org
Subject: Re: iptables / bridge mode
From: Bulent Murtezaoglu <bm@acm.org>
Date: Mon, 20 Jan 2003 02:33:28 +0200
Message-id: <[🔎] 15915.17368.781565.32077@gargle.gargle.HOWL>
In-reply-to: <[🔎] 20030119234242.GA1232@lowpingbastards.de>
References: <[🔎] 3E2B294E.40805@linuxinfo.dk> <[🔎] 20030119234242.GA1232@lowpingbastards.de>

>>>>> "FS" == Frederik Schueler <fs@lowpingbastards.de> writes:
[...]
    FS> Don't forget the arp table cache, it takes some time to expire
    FS> and at least the router your ISP installed at your site will
    FS> make some trouble with this, means a host which had a
    FS> connection open won't regain it that fast as you might expect.

Yes, you may need to use arping for this.   It should be in 
iputils-arping package.  You can incorporate this into your scripts
if it turns out you need it.  The dafult arp cache timeout for Cisco
is very long (4 hrs, if I remember correctly) but gratuitous arp does
work and updates the cache.  

cheers,

BM

Reply to:

References:
- iptables / bridge mode
  - From: Brian Josefsen <josefsen@linuxinfo.dk>
- Re: iptables / bridge mode
  - From: Frederik Schueler <fs@lowpingbastards.de>

Prev by Date: Re: iptables / bridge mode
Next by Date: Re: iptables for 1 interface pc and other questions
Previous by thread: Re: iptables / bridge mode
Next by thread: Re: iptables / bridge mode
Index(es):
- Date
- Thread