RE: your mail

fredy Wed, 02 Aug 2000 07:22:53 -0700
Well gilad, I think this idea of yours could actually work...
At least that's what it looks like from the documentation.
I'd love to hear of more examples before I break my head here and use
resources to accomplish it.
I need at least one example of a Linux based bridge+firewall which is
bridging An Internet network and not a LAN (between router and DMZ).
Anyone?

Fred Arie.
TIE Middle East Ltd.
Ben Gurion 22 street
Hertzliya, ISRAEL
Tel: +972-9-9501132
 or: +972-9-9501113
Cell: +972-52-522006
Fax.:+972 9 9500911
mailto:[EMAIL PROTECTED]
Http://www.TieMiddleEast.com

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Gilad Ben-Yossef
Sent: Wednesday, August 02, 2000 11:33 AM
To: fredy
Cc: Linux-Il
Subject: Re: your mail



On Wed, 2 Aug 2000, fredy wrote:

> I have a question.
> I have a Linux based firewall, 2 NIC's.
> I need to use it to protect a class C subnet of real Internet computers.
> Does anyone have an idea of how to do that ?
> (From the router the demand will come to any IP address in that subnet and
> not only to the IP of the Linux machine)

Dont think so 3rd layer, JeanLuke ;-)

The easiest solution is:

1. Install on the Firewall machine both the bridging patch and the IP
firewalling on a bridge patch that can be found at
http://www.openrock.net/bridge.

2. Follow the very simple instruction to make the two NICs bridged.

3. Configure the regular firewalling rules according to the instructions
found in said site using IPChains.

4. Stick the machine between router inner leg and the hub/switch whatever
the router was connected to.

5. Enjoy ;-)


---
Gilad Ben-Yossef <[EMAIL PROTECTED]>
                                          Tel:  +972-54756701
   GP: Is Eris true?                      Fax:  +972-15154756701
   M2: Everything is true.                HTTP: http://benyossef.com
   GP: Even false things?                 GPG:  64C5 8B59 74D5 8FAE F097
   M2: Even false things are true.              8DF8 4590 CE75 F444 6178
   GP: How can that be?                   SMS:
http://benyossef.com/how.html
   M2: I don't know man,I didn't do it.   IRC:  Fidros



=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]


=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
RE: your mail

Reply via email to
