[LARTC] Bridge and Router on the same device
Manish Kathuria
mkathuria at tuxtechnologies.co.in
Fri Nov 17 09:43:31 CET 2006
On 11/16/06, Abel Martín <abel.martin.ruiz at gmail.com> wrote:
> On 11/13/06, Net Cerebrum <netcerebrum at gmail.com> wrote:
> >
>
> > I plan to configure the Bridge IP ( 172.16.100.1) as the default gateway for
> > the LAN and also regulate the traffic between the two bridged interfaces
> > (eth1 and eth2) using a user space tool. Further since the traffic meant for
> > internet would pass through eth0, there would be a need to regulate the
> > traffic between eth1 and eth0 and also eth2 and eth0.
> >
> > Is the above arrangement feasible ? Would it be possible to define static
> > routes on this device itself involving hosts reachable through either of the
> > interfaces.
> >
> > Thank you in advance.
> >
>
> I think it's possible, but, what does "regulating traffic between the
> two bridged interfaces"? Remember that a bridge works at the data link
> layer, so I think it won't be possible filter bridged traffic at
> higher layers (TCP/IP) on the bridge device. Maybe you can filter at
> network and transport layers on the physical interfaces which are
> attached to the bridge (eth1, eth2) with iptables if you really need
> it. Don't know if you mean filtering by saying "regulating".
>
> Regards.
>
You can also check out ebtables and use them for filtering.
http://ebtables.sourceforge.net/
--
Manish Kathuria
Tux Technologies
http://www.tuxtechnologies.co.in/
More information about the LARTC
mailing list