LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 03-11-2005, 01:39 AM   #1
cortj
LQ Newbie
 
Registered: Feb 2003
Posts: 13

Rep: Reputation: 0
bridging firewall


I am going to setup a bridging firewall using a minimal install of fc3 I have a decent idea of of setting up the bridge but am worried about the ebtables part of it. I've been to the ebtables site and found documentation lacking to say the least. can some one give me some examples ebtables configs with the commands neccessary to build the rule.

To clarify let me give an example with iptables.
When I was more of a newbie I would pull my hair out trying to figure out how to open a port with iptables. I would man iptables and my mind would go to jello. I would perform the old iptables --list see a port 80 open but looking at the list I had no idea how to open port 22. Then when I learned the basic iptables -A INPUT -p tcp --dport 22 -j ACCEPT I would perform a service iptables restart and wonder why my rule wasnt applied. Finally after 30 cups of coffee I found the iptables-save command.

I say all of this to say this I dont want to go through this process learning ebtables so any help or GOOD Links please post. Anybody that has been through the fire already with things I need to look out for. Please post.


Thanks in advance
 
Old 03-11-2005, 03:48 AM   #2
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 47
I've only ever used the documentation off the sourceforge site..
http://ebtables.sourceforge.net/documentation.html
It's quite complete..

There's also this pdf http://www.spenneberg.com/talks/linu...bridgewall.pdf

The basic concept is for ebtables to DROP everything and for the nf-bridge to ALLOW everything.
This passes packets into the netfilter system.
Anything netfilter passes will end up back on the wire.
If ebtables ALLOWs anything, you will get 2 copies of it, one from ebtables and one from netfilter..

Last edited by peter_robb; 03-11-2005 at 04:12 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
No internet acess through bridging firewall mullog *BSD 2 03-24-2005 03:13 PM
File sharing on an OpenBSD bridging firewall mullog Linux - Networking 3 03-16-2005 10:43 AM
Bridging firewall in FC2-Help needed. welwitchia Linux - Security 4 08-12-2004 04:22 PM
Performance problems with iptables and bridging firewall DarkSun4241 Linux - Networking 2 05-28-2004 09:26 PM
OpenBSD 3.0 : Bridging Firewall aru *BSD 1 06-16-2002 01:35 AM


All times are GMT -5. The time now is 09:00 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration