If you want to use firewalling facilities within a bridge you will have to use ebtables.lrp http://leaf.sourceforge.net/doc/guide/bipack2.html#id2881716 http://ebtables.sourceforge.net/
In order to have ebtables working with Bering 1.2 you will have to replace the linux kernel and the kernel modules provided on the original distro with the one provided in my testing directory: linux kernel (to be renamed linux on the floppy): http://leaf.sf.net/devel/jnilo/testing/Bering_1.2a_linux.upx kernel modules set: http://leaf.sf.net/devel/jnilo/testing/Bering_1.2a_modules_2.4.20.tar.gz As mentionned in his mail by Tom, shorewall does not support bridging so you you will have to remove the package from Bering. You can then start from any firewalling example provided in the ebtable web site: http://ebtables.sourceforge.net/br_fw_ia/br_fw_ia.html http://ebtables.sourceforge.net/examples.html#easy Now the real challenge would be to create a new "Bridgewall" package derived from Shorewall to make the configuration easy. I think this idea was suggested by Tom himself some time ago. Any volunteer ??? :-) Jacques Le Dimanche 13 Juillet 2003 22:10, Mike Schurman a �crit : > I'll resend this as an FYI: > > Shorewall is completely incompatible with bridging... > > ----- Original Message ----- > From: "Tom Eastep" <[EMAIL PROTECTED]> > To: "Mike Schurman" <[EMAIL PROTECTED]>; > <[EMAIL PROTECTED]> > Sent: Wednesday, June 11, 2003 8:40 PM > Subject: Re: [leaf-user] bridge and htb > > > On Wed, 11 Jun 2003 20:33:34 -0500, Mike Schurman <[EMAIL PROTECTED]> > > > > wrote: > > > If I bring the eth1 interface down and back up and Stop and restart > > > Shorewall (runs the Wonder Shaper script) > > > > Shorewall is completely incompatible with bridging... > > > > -Tom > > -- > > Tom Eastep \ Shorewall - iptables made easy > > Shoreline, \ http://www.shorewall.net > > Washington USA \ [EMAIL PROTECTED] > > > > > > ------------------------------------------------------- > > This SF.NET email is sponsored by: eBay > > Great deals on office technology -- on eBay now! Click here: > > http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5 > > ------------------------------------------------------------------------ > > leaf-user mailing list: [EMAIL PROTECTED] > > https://lists.sourceforge.net/lists/listinfo/leaf-user > > SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html > > ------------------------------------------------------- > This SF.Net email sponsored by: Parasoft > Error proof Web apps, automate testing & more. > Download & eval WebKing and get a free book. > www.parasoft.com/bulletproofapps1 > ------------------------------------------------------------------------ > leaf-user mailing list: [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/leaf-user > SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ------------------------------------------------------- This SF.Net email sponsored by: Parasoft Error proof Web apps, automate testing & more. Download & eval WebKing and get a free book. www.parasoft.com/bulletproofapps1 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
