In article <[EMAIL PROTECTED]> [EMAIL PROTECTED] writes: >I'm currently setting up a bridge on Debian, which is meant to act as >an invisible filter in our network which is otherwise directly exposed >to the internet (every host directly reachable from the internet, no >NAT or anything like that). > >I found a good Debian howto that describes this setup, but I was >wondering if there is an iptables firewall script which is meant for >that kind of setup. All iptables scripts I know are for NAT or Home >Firewalling (including dialup etc). > > >Thanks in advance for useful hints.
You may want to consider a single-address proxy-arp firewall instead. See http://www.blars.org/sapaf.html -- Blars Blarson [EMAIL PROTECTED] http://www.blars.org/blars.html With Microsoft, failure is not an option. It is a standard feature. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
