diff options
author | Hans Schultz <schultz.hans@gmail.com> | 2022-02-23 13:16:46 +0300 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2022-02-23 15:52:34 +0300 |
commit | a21d9a670d81103db7f788de1a4a4a6e4b891a0b (patch) | |
tree | ab75d11b76ff32537959fe60fe461627a2a9f84d /include/linux/if_bridge.h | |
parent | b26ef81c46ed15d11ddddba9ba1cd52c749385ad (diff) | |
download | linux-a21d9a670d81103db7f788de1a4a4a6e4b891a0b.tar.xz |
net: bridge: Add support for bridge port in locked mode
In a 802.1X scenario, clients connected to a bridge port shall not
be allowed to have traffic forwarded until fully authenticated.
A static fdb entry of the clients MAC address for the bridge port
unlocks the client and allows bidirectional communication.
This scenario is facilitated with setting the bridge port in locked
mode, which is also supported by various switchcore chipsets.
Signed-off-by: Hans Schultz <schultz.hans+netdev@gmail.com>
Acked-by: Nikolay Aleksandrov <nikolay@nvidia.com>
Reviewed-by: Ido Schimmel <idosch@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'include/linux/if_bridge.h')
-rw-r--r-- | include/linux/if_bridge.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/include/linux/if_bridge.h b/include/linux/if_bridge.h index 509e18c7e740..3aae023a9353 100644 --- a/include/linux/if_bridge.h +++ b/include/linux/if_bridge.h @@ -58,6 +58,7 @@ struct br_ip_list { #define BR_MRP_LOST_CONT BIT(18) #define BR_MRP_LOST_IN_CONT BIT(19) #define BR_TX_FWD_OFFLOAD BIT(20) +#define BR_PORT_LOCKED BIT(21) #define BR_DEFAULT_AGEING_TIME (300 * HZ) |