| ebtables (http://ebtables.sourceforge.net) is a filtering tool for an iptables/netfilter firewall running in bridge mode. It also has the ability to alter MAC addresses and route traffic at Layer 2. From the website, ebtables supports the following features: Ethernet protocol filtering MAC address filtering Simple IP header filtering ARP header filtering 802.1Q VLAN filtering In/Out interface filtering (logical and physical device) MAC address nat Logging Frame counters Ability to add, delete and insert rules; flush chains; zero counters brouter facility Ability to automatically load a complete table, containing the rules you made into the kernel Support for user defined chains Support for marking frames and matching marked frames
|