git.baikalelectronics.ru Git - kernel.git/commit

author	Jesper Dangaard Brouer <hawk@comx.dk>
	Tue, 5 Jan 2010 05:50:47 +0000 (05:50 +0000)
committer	David S. Miller <davem@davemloft.net>
	Thu, 7 Jan 2010 08:59:09 +0000 (00:59 -0800)
commit	7db186c6454cb64fe9b483d684b29427bfaaea19
tree	1e910817f6d4f1ecd821bfd8ce493f81fe4aae60	tree \| snapshot
parent	39253dee2994a4f15d477903775a7e4ac7b8bf57	commit \| diff

net: RFC3069, private VLAN proxy arp support

This is to be used together with switch technologies, like RFC3069,
that where the individual ports are not allowed to communicate with
each other, but they are allowed to talk to the upstream router. As
described in RFC 3069, it is possible to allow these hosts to
communicate through the upstream router by proxy_arp'ing.

This patch basically allow proxy arp replies back to the same
interface (from which the ARP request/solicitation was received).

Tunable per device via proc "proxy_arp_pvlan":
/proc/sys/net/ipv4/conf/*/proxy_arp_pvlan

This switch technology is known by different vendor names:
- In RFC 3069 it is called VLAN Aggregation.
- Cisco and Allied Telesyn call it Private VLAN.
- Hewlett-Packard call it Source-Port filtering or port-isolation.
- Ericsson call it MAC-Forced Forwarding (RFC Draft).

Signed-off-by: Jesper Dangaard Brouer <hawk@comx.dk>
Signed-off-by: David S. Miller <davem@davemloft.net>

Documentation/networking/ip-sysctl.txt		diff \| blob \| history
include/linux/inetdevice.h		diff \| blob \| history
include/linux/sysctl.h		diff \| blob \| history
net/ipv4/arp.c		diff \| blob \| history
net/ipv4/devinet.c		diff \| blob \| history
net/ipv4/route.c		diff \| blob \| history