I''m not subscribed to the users list but I''ve been reading the archives. The OP should NOT try using bridging with either FC 3 or FC 4 at this time because the combination of Netfilter and bridging is currently broken in the kernel''s included with those distros (as reported in another thread on the list). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Fri, 2005-07-01 at 13:17 -0700, Tom Eastep wrote:> I''m not subscribed to the users list but I''ve been reading the archives. The > OP should NOT try using bridging with either FC 3 or FC 4 at this time > because the combination of Netfilter and bridging is currently broken in the > kernel''s included with those distros (as reported in another thread on the > list). > > -Tom > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htmThanks for the heads up! The purpose behind this experiment was to learn how bridging firewalls work, and I have picked up a lot from the documentation and google. I''ll hold off given my OS doesn''t support it. Its very interesting how many Linux based routers/APs use bridging mode on their interfaces - LinksysWRT54G routers, Colubris, etc.
On Friday 01 July 2005 02:23 pm, Ryan wrote:> The purpose behind this experiment was to learn how bridging firewalls > work, and I have picked up a lot from the documentation and google. I''ll > hold off given my OS doesn''t support it. > > Its very interesting how many Linux based routers/APs use bridging mode > on their interfaces - LinksysWRT54G routers, Colubris, etc.Actually the WRT54G only uses bridging mode if you have two of them and use them back to back as a bridge - other than that, its a normal router with its own dhcp server, and separate subnet on the wireless side, and it uses Dnat for any manually set up inbound connections. We have used a pair this way for years to push the network out to a boat in a slip at the marina. Could have used ordinary wireless but couldn''t get a signal inside the aluminum hull. -- John Andersen - NORCOM http://www.norcomsoftware.com/
The unit I had (WRT54G) bridged, by default, its wireless and LAN ports to 192.168.1.1. If you add in WDS, that would be another bridge. It did not bridge its WAN port with its LAN/WLAN ports. Here is a slide show for firewall builder - in the middle you see how the WLAN and LAN are bridged (although this uses 3rd party firmware on the Linksys): http://www.fwbuilder.org/archives/cat_slides.html#000157 On Fri, 2005-07-01 at 16:16 -0800, John Andersen wrote:> > Actually the WRT54G only uses bridging mode if you have two of them > and use them back to back as a bridge - other than that, its a normal > router > with its own dhcp server, and separate subnet on the wireless side, > and > it uses Dnat for any manually set up inbound connections. > > We have used a pair this way for years to push the network out to > a boat in a slip at the marina. Could have used ordinary wireless > but couldn''t get a signal inside the aluminum hull. >