artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dd192d6) | patch
Add a new '-protected' option for bridge members.
authormpi <mpi@openbsd.org>
Thu, 8 Feb 2018 13:15:31 +0000 (13:15 +0000)
committermpi <mpi@openbsd.org>
Thu, 8 Feb 2018 13:15:31 +0000 (13:15 +0000)
commit0a04437d42d10beec112812e851a51f673d7ab0c
tree3b2d172d00d03cab1060e05d16d8e9abb96e1f99tree | snapshot
parentdd192d6e5736d2b48634da5888f5cfbebfb86ea0commit | diff
Add a new '-protected' option for bridge members.

Bridge members that are part of the same protected domain, refered by
a number between 1 and 31, cannot talk to each others.  This is useful
to isolate VMs or untrusted networks at layer 2.

Members can be part of multiple protected domain making it possible to
create complex protected setups.

ok ccardenas@, claudio@, dlg@, henning@
sbin/ifconfig/brconfig.c diff | blob | history
sbin/ifconfig/brconfig.h diff | blob | history
sbin/ifconfig/ifconfig.8 diff | blob | history
sbin/ifconfig/ifconfig.c diff | blob | history
sys/net/if_bridge.c diff | blob | history
sys/net/if_bridge.h diff | blob | history
sys/sys/sockio.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim