[Wylug-help] Bridge Filtering

Simon Wood Simon.Wood at pace.co.uk
Mon, 20 Jan 2003 10:32:13 -0000 

If you place the ADSL router into bridge mode, the BSD box will have to
be given your public IP address. This will leave the Windoze box out in
the cold (without an IP) and you'd have to bring it into the main network
i.e. behind the BSD firewall.

You appear to have set it up correctly, using the Virtual Server/Port
Forwarding, with Windows in a DMZ.

I have a similar problem (though have only just discovered it after setting
up the router at the weekend - my ssh port forwarding doesn't work).
I'll have another look tonight at my setup.

Two comments I found about Virtual Servers.
1). Router based DHCP server must be off.
2). Router needs to be rebooted for Virtual Servers to work.....

Good luck, and have you remembered to change the default passwords as the
ftp (flash update) is visable from the ADSL side by default (Doh!!).

Simon Wood.

-----Original Message-----
From: Daniel Walker [mailto:danielwalker@fastmail.fm]
Sent: Monday, January 20, 2003 10:04 AM
To: wylug-help@wylug.org.uk
Subject: [Wylug-help] Bridge Filtering


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Well, as some of you know, I have two firewalls at home:

e.g.:

			------>flatmate's Windows boxes
Conexant ----|
Firewall		-------> Open BSD firewall ---->My boxes


Which works reasonably well.

Except I can't serve from it - I can use the 'Virtual server' functions to
forward ports from the Conexant Box to the OpenBSd firewall. Except I can't,
beacause it doesn't work. (Connection refused, every time)

So, I'd like the OpenBSd firewall to have it's own public IP address (We have
a spare one from the ISP)

Can I use the 'Bridge Filtering' function to do this if I set the OpenBSD
firewall's IP address to a public one?

Will the windows boxes still [work | behave the same as usual]?

(Conexant firewall docs can be found at
http://www1.planet.com.tw/FAE/ftp/ADSL/ADE3000/EM-ADEV2.pdf )

Am I barking completely up the wrong tree here?

Dan
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE+K8mLC2kcpPIIs7gRAgSDAJ9TWLDYc9Ks0VQNz9Wa8ZyqX+UGdwCeO6mb
DuJT6HO3h+cP/aI/d58qwn4=
=PJK6
-----END PGP SIGNATURE-----


_______________________________________________
Wylug-help mailing list
Wylug-help@wylug.org.uk
http://list.wylug.org.uk/mailman/listinfo/wylug-help