Tuesday, October 30, 2007

Re: Multi port firewall

Hello,

Andy Simpkins a écrit :
>
> eth0 and eth1 will therefore share the same subnet.

Preferably not if you want to avoid trouble and dirty hacks.

> How do I configure
> my firewall/router to route to these boxes correctly?

If you want the same subnet on two interface, you'd better bridge them
together. You can filter bridged traffic using ebtables or
{ip,ip6,arp}tables through the bridge-nf infrastructure.

WAN--bridge--(routing+NAT)--LAN
|
DMZ


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

No comments:

Post a Comment