Most recent kernel where this bug did not occur: Distribution:Gentoo Hardware Environment:ThinkPad T41 Software Environment:Gentoo Linux Problem Description: Although I defined firewall rules to block all incoming UDP packets at interface ppp0 I can capture UDP packets at interface eth0 if eth0 is set into promiscuous mode. Steps to reproduce: $>tcpdump udp -i eth0 -s 0 -U -v -w tcpdump_eth0_pm.pcap I'll attach the captured data as well as the firewall script itself.
Created attachment 13123 [details] udp packets
Created attachment 13124 [details] firewall script
The firewall blocks reception at the IP layer, not at the interface layer. Please close, invalid.
Created attachment 13143 [details] udp packets sniffed with wireshark Ok, I'll close this bug - however I'm wondering why I always get with tcpdump only SSDP packets whereas with wireshark I observed udp messenger packets and others as seen in this attachment.