[TriLUG] Re: using a Linux box as a pass-through filter

Lance A. Brown lance at bearcircle.net
Mon Dec 20 09:07:22 EST 2004


Yep.  This can be done.  Someone where I work has a linux box set up as
a bridge and is running firewall rules on it to protect a Beowolf
cluster.  The system is normally invisible to the network.

--[Lance]

Dan Monjar wrote:
> An idea I had late last night while I listened to the wind howl... would
> it be possible to setup a Linux box with two nics and use various
> firewall rules to filter traffic and ports... the possible gotcha is
> that I don't want either nic to have an IP address.  I want to take
> traffic in on one port, analyze and drop unwanted packets and then push
> the acceptable traffic out through the other nic.
> 
> I want an in-line filter...
> 
> I wish everyone on the list a Happy and Safe Holiday season.

-- 
 Carolina Spirit Quest  http://www.carolinaspiritquest.org/
 Celebrate The Circle   http://www.celebratethecircle.org/
 My LiveJournal  http://www.livejournal.com/users/labrown/
 GPG Fingerprint: 409B A409 A38D 92BF 15D9 6EEE 9A82 F2AC 69AC 07B9
 CACert.org Assurer



More information about the TriLUG mailing list