I need to avoid broadcast tempest through zeroshell=bridge.
I add in Startup Configuration:
/cdrom/usr/local/sbin/iptables -A FORWARD -m pkttype –pkt-type multicast -m limit –limit 10/second -j ACCEPT
This rule is successfuly added at the end of FORWARD chain.
root@zeroshell misc> iptables -L |grep limit
ACCEPT all — anywhere anywhere PKTTYPE = multicast limit: avg 10/sec burst 5
But if I change something in firewall configuration, this rule disappeares.
=> reboot is necessary
Is there an other solution ?