Re: Multi port firewall

To: debian-firewall@lists.debian.org
Subject: Re: Multi port firewall
From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
Date: Tue, 30 Oct 2007 18:03:26 +0100
Message-id: <[🔎] 472763DE.5090003@plouf.fr.eu.org>
In-reply-to: <[🔎] 47273ADA.6050707@mindsail.com>
References: <[🔎] 47273ADA.6050707@mindsail.com>

Hello,

Andy Simpkins a écrit :


eth0 and eth1 will therefore share the same subnet.


Preferably not if you want to avoid trouble and dirty hacks.

How do I configuremy firewall/router to route to these boxes correctly?

If you want the same subnet on two interface, you'd better bridge themtogether. You can filter bridged traffic using ebtables or{ip,ip6,arp}tables through the bridge-nf infrastructure.


WAN--bridge--(routing+NAT)--LAN
       |
      DMZ

Reply to:

References:
- Multi port firewall
  - From: Andy Simpkins <andy.simpkins@mindsail.com>

Prev by Date: Multi port firewall
Previous by thread: Multi port firewall
Index(es):
- Date
- Thread