Bridge networking exclusion

Hi,

In my Ubuntu, I have 192.168.1.1 and 10.0.0.22, the former connects to dsl while the later connects to a local area network, if I start a lxd container, it automatically has the lxdbr0 as the network connection, inside the container I can ping all the 192.168.1.x and 10.0.0.x machines in the network, I’d like to exclude 10.0.0.x from lxdbr0, is there a way? thanks

sudo lxc network show lxdbr0

config:
  ipv4.address: 10.52.176.1/24
  ipv4.nat: "true"
  ipv6.address: none
description: ""
name: lxdbr0
type: bridge
used_by:
- /1.0/containers/test-container
managed: true

You’d do that with good old iptables, putting it in an init script for persistency:

iptables -I FORWARD -i lxdbr0 -d 10.0.0.0/24 -j REJECT