From af3d40e8a4293f83abe9efaf8995f28f3287c758 Mon Sep 17 00:00:00 2001
From: Bill Nottingham <notting@redhat.com>
Date: Fri, 31 Jul 2009 09:39:12 -0400
Subject: Disable netfilter on bridged interfaces. (#512206)

---
 sysctl.conf | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'sysctl.conf')

diff --git a/sysctl.conf b/sysctl.conf
index db98922f..5ab82d1b 100644
--- a/sysctl.conf
+++ b/sysctl.conf
@@ -18,3 +18,8 @@ kernel.sysrq = 0
 # Controls whether core dumps will append the PID to the core filename.
 # Useful for debugging multi-threaded applications.
 kernel.core_uses_pid = 1
+
+# Disable netfilter on bridges.
+net.bridge.bridge-nf-call-ip6tables = 0
+net.bridge.bridge-nf-call-iptables = 0
+net.bridge.bridge-nf-call-arptables = 0
-- 
cgit v1.2.1