Hi Folks, A Simple question. With Shorewall in bridge mode can i make this : (Router) | (Switch) | |eth0 (Shorewall with Bridge + iptables "Open and close ports") (Here i have 4 real classes 200.x.x.255) |eth1 | (Switch) | All my clients (Lot´s of switch in 23 areas) Total 450 Clients (1230 PC´s) (All with real ips) It will works ?? To control using MACLIST etc .. Today i´m using proxyarp but sometimes my routes just become crazy and crash I have one Xedia 1000 Thanks Carlos ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click
2005/7/15, Carlos Arnt <carlinhos@key.com.br>:> > Hi Folks, > > A Simple question. > > With Shorewall in bridge mode can i make this : > > (Router) > | > (Switch) > | > |eth0 > (Shorewall with Bridge + iptables "Open and close ports") (Here i have 4 real classes 200.x.x.255) > |eth1 > | > (Switch) > | > All my clients (Lot´s of switch in 23 areas) Total 450 Clients (1230 PC´s) > (All with real ips) > > > It will works ?? To control using MACLIST etc .. > > Today i´m using proxyarp but sometimes my routes just become crazy and crash > I have one Xedia 1000 > > Thanks > > Carlos >Yes read the docs: http://www.shorewall.net/bridge.html BTW... don ''t use FC 3 or 4..kernel is broken and bridge won''t work at all. ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click
> > > Yes read the docs: > > http://www.shorewall.net/bridge.html > > BTW... don ''t use FC 3 or 4..kernel is broken and bridge won''t work at all.Bridge works for me in FC3, but you need to use kernel 2.6.11-1.14_FC3 and not the latest kernel. ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click
Great, You mean using BR0 works ?? I will change from Proxyarp to Bridge mode than and try it. Any tip will really help-me alot ! Thannks again. Carlos. On Fri, 15 Jul 2005 17:12:16 -0400, Cristian Rodriguez wrote:> 2005/7/15, Carlos Arnt <carlinhos@key.com.br>: > >> Hi Folks, >> >> A Simple question. >> >> With Shorewall in bridge mode can i make this : >> >> (Router) >> | >> (Switch) >> | >> |eth0 >> (Shorewall with Bridge + iptables "Open and close ports") (Here i >> have 4 real classes 200.x.x.255) |eth1 | (Switch) | All my >> clients (Lot´s of switch in 23 areas) Total 450 Clients (1230 >> PC´s) (All with real ips) >> >> >> It will works ?? To control using MACLIST etc .. >> >> Today i´m using proxyarp but sometimes my routes just become >> crazy and crash >> I have one Xedia 1000 >> >> Thanks >> >> Carlos >> > Yes read the docs: > > http://www.shorewall.net/bridge.html > > BTW... don ''t use FC 3 or 4..kernel is broken and bridge won''t work > at all. > > > ------------------------------------------------------- > SF.Net email is sponsored by: Discover Easy Linux Migration > Strategies > from IBM. Find simple to follow Roadmaps, straightforward articles, > informative Webcasts and more! Get everything you need to get up to > speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-usersCarlos Arnt Diretor Técnico Key soluções em Internet Av. das americas 500 bl 03 sala 204 Tel: (021) 2492-1666 Voip rede mundial: 9000 ou 9500 E-mail: solucoes@key.com.br ------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_idt77&alloc_id492&op=click