[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables with a linux bridge



* Giacomo Mulas <gmulas@ca.astro.it> [2001.11.28 18:11:40+0100]:
> > I've installed a linux bridge with 2.4.14 kernel and the
> > bridge-utils packages
> 
> I am VERY interested, since I administer a transparent firewall
> myself. My firewall uses proxy arp (I implemented it in the old
> 2.2.x kernel + ipchains days), but I would like to convert it into a
> bridge much as you did.
> 
> > iptables -A FORWARD -d 62.4.8.73 -s 0/0 -p ICMP -j DROP

uhm, a bridge works on OSI level 2. as soon as you look at an IP
address, you don't have a bridge anymore. aside, firewall rules on a
bridge just don't really make sense, do they?

-- 
martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
  
breakfast.com halted - cereal port not responding.

Attachment: pgpuO9Ge58YQf.pgp
Description: PGP signature


Reply to: