hello here is a litle backgound information of what i've done so far, and still iptables does not seem to function.
I've patched 2.4.18 kernel with bridge-nf: patch -p1 < bridge-nf-0.0.7-against-2.4.18.diff I configured and compiled the 2.4.18 kernel with the common procedure. Then I compiled iptables (ver 1.2.6a) and bridge-utils (ver 0.9.5). and finally I tried to setup my transparent firewall bridge with the following commands: insmod 8139too ifconfig eth0 0.0.0.0 ifconfig eth1 0.0.0.0 insmod bridge brctl addbr roufixtra brctl addif roufixtra eth0 brctl addif roufixtra eth1 ifconfig roufixtra 212.251.78.254 netmask 255.255.255.240 up route add -net 0.0.0.0 gw 212.251.78.241 dev roufixtra The bridge is working great. But when I try to block the 1433 port on a damn NT box with the following command: iptables -I INPUT -i roufixtra -p tcp -s 0.0.0.0/0 -d 212.251.78.248 --dport 1433 -j DROP it simply doesn't block it! I've also tried to apply this rule on eth0 and eth1, with many other variations too. none worked:-( Any ideas why this is happening?!?!?! PS: I've also been running snort and it works great on this bridge. (later I'd like to setup guardian plugin too) __________________________________________________ Do You Yahoo!? Yahoo! - Official partner of 2002 FIFA World Cup http://fifaworldcup.yahoo.com _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
