urgrue wrote:
> hi,
> i want to filter what travels through the bridge, like many others
> here. what is the latest info on the 2.4 iptables patch?
Using it for NAT with the current development snapshot of the netfilter
integration. Works fine for our purposes. Havent actually tried filtering
but I see no reason why filtering should not work.
> are there any other firewall programs that might be able to filter the
> bridge?
I don't think anyone has considered writing an alternate firewall
implementation for Linux 2.4 than the three Netfilter based
implementations we have (iptables, ipchains compatibility, ipfwadm
compatibility).
Another option is of course to use the bridge patch for Linux-2.2 and
ipchains.
> my goal is to make a transparent FW (no LAN/router reconfiguration
> necessary) that utilizes something beefier than just ipchains.
> any ideas? any other way to do it than with a bridge?
Please elaborate on beefier.
To do it fully transparent you basically need a bridge, or alternatively
proxy-arp if there is only IP traffic involved.
--
Henrik Nordstrom
MARA Systems AB
Sweden
_______________________________________________
Bridge mailing list
[EMAIL PROTECTED]
http://www.math.leidenuniv.nl/mailman/listinfo/bridge
