Re: firewalls for dummies?

To: debian-firewall@lists.debian.org
Cc: Stuart Marshall <marshall@sioux.llnl.gov>
Subject: Re: firewalls for dummies?
From: Erwann CORVELLEC <eco@guy-hoquet.net>
Date: Thu, 01 Jul 1999 19:22:50 +0000
Message-id: <[🔎] 377BC00A.51E767A1@guy-hoquet.net>
References: <[🔎] 19990701083452.A8852@sioux.llnl.gov>

Stuart Marshall wrote:
> The one test so far was set up as:
> 
>  upstream router ------ firewall -- switched_hub ---- local_machine_a
>  X.Y.116.254            ^      ^
>  X.Y.12.254 (alias)     |      |
>                         |      |
>         eth0 = X.Y.12.2 |      |_ eth1 = X.Y.12.242
> 
> Here local_machine_a was configured as:
> 
>         IPADDR=X.Y.12.107
>         NETMASK=255.255.255.0
>         NETWORK=X.Y.12.0
>         BROADCAST=X.Y.12.255
>         GATEWAY=X.Y.12.242
> 
> I put a "1" into /proc/sys/net/ipv4/ip_forward and set the chain
> policies all to ACCEPT hoping to create a simple pass-through system.
> No bytes would go from the inside to the outside or the other way round.

  You have to setup proxy arp. Watch kernel docs but that should do it:
echo 1 > /proc/sys/net/ipv4/conf/eth0/proxy_arp
echo 1 > /proc/sys/net/ipv4/conf/eth1/proxy_arp

-- 
         _____________________________________________
  ECO.  | Hiroshima 45 -> Tchernobyl 86 -> Window$ 00 |
  ~~~~  |      1999 => The Year Of The Penguin !      |
         ---------------------------------------------

Reply to:

References:
- firewalls for dummies?
  - From: Stuart Marshall <marshall@sioux.llnl.gov>

Prev by Date: Re: Port forwarding - problem resolved
Next by Date: Re: firewalls for dummies?
Previous by thread: firewalls for dummies?
Next by thread: Re: firewalls for dummies?
Index(es):
- Date
- Thread