site
contact
newsKernel 4.14.73, ethernet bridge
I am currently working on Easy Containers in EasyOS, mostly
targeting improving security. It is now uses the 'pflask' utility, that I
posted about here:
http://bkhome.org/news/201809/pflask-chroot-on-steroids.html
One security step is to enable 'network namespace' for the container,
and use a 'ethernet bridge' to access the physical network interface.
However, I found that my Linux kernel is not configured correctly. So,
have just now compiled the 4.14.73 kernel, running EasyOS, with these
turned on:
[*] networking support
Networking options
<*> IPV6 support
<*> 802.1D Ethernet bridging
<*> 802.1Q VLAN support
Note, previously, IPV6 support was a module, but to configure ethernet bridging to be built-in, had to change IPV6 to built-in.
I will probably post a little tutorial on how I setup the bridge, after figuring it out.
The kernel source, with patches and build scripts is here:
http://distro.ibiblio.org/easyos/source/kernel/4.14.73/
...'DOTconfig-4.14.73.gz' is the latest '.config' file. There is
another 'DOTconfig-4.14.73' inside the 'build-kernel-4.14.73.tar.gz'
tarball, that does not have the above ethernet bridge support.
Tags: easy