1. I'd assign the IP to the br0 interface. 2. You need the bridge-nf kernel patch.
On Tue, Sep 24, 2002 at 02:15:01PM -0500, Jason P Holland wrote: > guys, > hope you can help. i'm very new at bridging in linux. i want to setup > a very simple bridge, to protect a machine that has web access, but no > access controls. its not a computer, but an audio/video device. with > that being the case, i need something to police access to the web > interface. a transparent bridge filtering ip and mac addresses seems good > enough. but i have a question about running on the bridge itself. right > now i just have 2 nics in the box, both are bound into br0. would it be > better practice to have a 3rd nic, run an ip-less bridge, bind ssh to the > third nic, and administer the box that way?? or just assign an ip to br0 > and come in over the bridge interface? i have tried it with 2 nics, and > can't seem to figure out the correct iptables rules. has anyone tried > this??? can anyone provide some iptables examples maybe? or just a > general helpful best practice hints. thanks a bunch > > jason > > _______________________________________________ > Bridge mailing list > [EMAIL PROTECTED] > http://www.math.leidenuniv.nl/mailman/listinfo/bridge _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
