[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables with a linux bridge

* Giacomo Mulas <gmulas@ca.astro.it> [2001.11.28 18:11:40+0100]:
> > I've installed a linux bridge with 2.4.14 kernel and the
> > bridge-utils packages
> I am VERY interested, since I administer a transparent firewall
> myself. My firewall uses proxy arp (I implemented it in the old
> 2.2.x kernel + ipchains days), but I would like to convert it into a
> bridge much as you did.
> > iptables -A FORWARD -d -s 0/0 -p ICMP -j DROP

uhm, a bridge works on OSI level 2. as soon as you look at an IP
address, you don't have a bridge anymore. aside, firewall rules on a
bridge just don't really make sense, do they?

martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
breakfast.com halted - cereal port not responding.

Attachment: pgpHb5Sljfxrq.pgp
Description: PGP signature

Reply to: