* Simon Murcott <[EMAIL PROTECTED]> [2001.11.29 16:31:12+1300]: > One point you are missing is that it is possible using this kind of > configuration to create a firewall where you cannot address any of it's > external interfaces. So how can you do an intrusion attack on a firewall > that you cannot address?
okay, this is an interesting point. however, all i was saying is that the linux bridging project is commiting suicide (as the bridging project) as soon as they interface with netfilter or anything else that works with IP. but the more i think about this idea, the more i am liking it. who needs a bridge anyway? no, who needs that thing to be called a bridge? it's a firewall with the usually mandatory routing component ripped out. -- martin; (greetings from the heart of the sun.) \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck to vacillate or not to vacillate, that is the question ... or is it?
msg04434/pgp00000.pgp
Description: PGP signature
