On May 20, 2005, at 4:26 PM, Antoine Jacoutot wrote:
Hi :)
I'm actually playing with bridge(4) for self-education purpose (for now) and I have a small question.
Would it be totally stupid to separate a LAN from a DMZ using an OpenBSD bridge ? If yes, why ?
What do you mean by "separate"? If you're using a bridge, that suggests you're *bridging* them together. Routing denotes some level os separation. The purpose of a DMZ is to isolate hostile traffic. If you're going to bridge this traffic with your LAN, you don't really have a DMZ.
-- Jason Dixon DixonGroup Consulting http://www.dixongroup.net
