From: Mark Wooding <mdw@distorted.org.uk>
Date: Sun, 19 Jun 2011 18:01:34 +0000 (+0100)
Subject: bookends, classify, local: Fixes for IP multicasting.
X-Git-Url: https://git.distorted.org.uk/~mdw/firewall/commitdiff_plain/429f4314d0d1be69f7500cf7f97671595804fdd0?hp=429f4314d0d1be69f7500cf7f97671595804fdd0

bookends, classify, local: Fixes for IP multicasting.

  * Allow reception of multicast packets.

  * Ensure that link-local multicasts aren't forwarded.  (Though
    currently no multicasts are forwarded, this isn't necessarily always
    going to be the case).

  * Turn /off/ iptables filtering of bridged packets.  I'm currently
    taking the view that the bridges are a hack introduced because I
    can't just plug all of the guests into a physical switch.  If I need
    to do better filtering, I'll either use ebtables or do something
    more complicated later.
---