2a51d94fbb
A few issues with the bridge snooping were identified and fixed upstream in OpenWRT: * "firewall: Allow IGMP and MLD input on WAN" (r45613) * "kernel: bridge: backport two snooping related patches" (r45783) * netifd: "bridge: Fix multicast_to_unicast feature by hairpin+isolate" (OW: "netifd: update to the latest version, adds multicast-to-unicast fixes" (r46719)) * "kernel: bridge, multicast-to-unicast: assign src after pskb_may_pull()" (r46721) * "kernel: bridge, multicast-to-unicast: fix echoes on STA" (46765) These have very likely caused issues with the bridge snooping before, which led to disabling it in the past. Let's reenable the multicast snooping now that they were fixed for reduced multicast overhead on the wifi. Advantages are the following: This mildly reduces overhead on the mesh layer. And significantly reduces overhead on the AP interface and therefore significantly increases available airtime (the currently most significant scalability bottleneck). Secondly removes an easy, often accidental node-local Denial-of-Service vector based on multicast flooding / streaming. Thirdly, makes node-local multicast streaming feasible. Finally should noticably increase battery life of mobile devices. Note: bridge querier is disabled for br-wan. We want to avoid becoming too "bossy"/"noisy" on a foreign network. Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue> |
||
---|---|---|
.. | ||
files | ||
luasrc/lib/gluon/upgrade | ||
src | ||
check_site.lua | ||
Makefile |