problems filtering with ip tables over bridge
Hi guys n gals,
I'm having a bit of a problem with setting firewall rules using iptables over a bridge on Debian Sarge.
Current configuration is:
ADSL Router: 192.168.1.1 connecting on eth0 to
Debian br0 : 192.168.1.5 connecting on eth1 to
Windoze PC : 192.168.1.20 (Default gateway set to 192.168.1.1)
I can edit the iptables to deny all access to/from the Debian server/firewall and this stops all traffic being sent and received on that unit, but the Win PC still has access through to its default gateway on all port and all protocols.
Obviously, if I bring the bridge down then the Win PC loses its connectivity but I'm struggling to restrict access to/from the Win PC.
I've read some documents on ebtables, which sounds relative but I've not been able to make sense of them.
Not sure if I'm overlooking something blatantly simple here but any help and/or advice you can offer is greatly appreciated.
|