From c2c439013cbe28b8cff1d3314d653fe8770dbcb8 Mon Sep 17 00:00:00 2001
From: Matthias Schiffer <mschiffer@universe-factory.net>
Date: Wed, 27 Dec 2017 16:50:54 +0100
Subject: [PATCH] gluon-ebtables-filter-multicast: do not filter out Bridge
 Loop Avoidance

batman-adv uses gratuitous ARP packets with certain target addresses for
BLA.

Fixes #1198
---
 .../files/lib/gluon/ebtables/110-mcast-allow-arp              | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp b/package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp
index 8af1900a..bbc621c6 100644
--- a/package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp
+++ b/package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp
@@ -1,3 +1,7 @@
+# Bridge loop avoidance
+rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-gratuitous --arp-mac-dst ff:43:05:00:00:00/ff:ff:ff:fc:00:00 -j RETURN'
+rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-gratuitous --arp-mac-dst ff:43:05:05:00:00/ff:ff:ff:ff:00:00 -j RETURN'
+
 rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-ip-src 0.0.0.0 -j DROP'
 rule 'MULTICAST_OUT -p ARP --arp-opcode Request --arp-ip-dst 0.0.0.0 -j DROP'
 rule 'MULTICAST_OUT -p ARP -j RETURN'