Hello,
On Wed, 6 Feb 2008, Brian Richardson wrote:
Stefan Kell wrote:
some other questions: why a bridge and why not simple router with pf? What
is your bridge configuration?
vr0 is internal interface. ral0 is wireless interface.
brconfig bridge0 add ral0
brconfig bridge0 add vr0
brconfig bridge0 rulefile /etc/bridge0.rules
/etc/bridge0.rules:
pass in on ral0 src 11:de:ad:be:ef:11
pass out on vr0 dst 11:de:ad:be:ef:11
block in/out on ral0
As to why the bridge? I'm not aware of any other way to use MAC filtering to
limit access to the external interface.
Regards,
Brian
I am not sure if I understand all of your intentions but I think you
should use only one subnet for your whole network. Then dhcpd can assign
addresses without problems amd the bridge will separate the wireless lan
from the rest.
I don't think this is a very secure solution and I would prefer to use
authpf and no bridge.
Regards
Stefan Kell
