Re: Bridge Transparent Proxy

NetFilter

Re: Bridge Transparent Proxy

To:	Jon Tim <lcguy229@yahoo.com>
Subject:	Re: Bridge Transparent Proxy
From:	Gáspár Lajos <swifty@freemail.hu>
Date:	Wed, 23 May 2007 15:39:49 +0200
Cc:	netfilter@lists.netfilter.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
In-reply-to:	<390179.89889.qm@web38509.mail.mud.yahoo.com>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References:	<390179.89889.qm@web38509.mail.mud.yahoo.com>
Sender:	netfilter-bounces@lists.netfilter.org
User-agent:	Thunderbird 2.0.0.0 (Windows/20070326)

Jon Tim írta:

Hello,

Many thanks for all reply to my Bridge Transparent
Proxy post.

But, please let me know more how to enable "netfilter
Bridge Support" in kernel. Can I add a linke
CONFIG_BRIDGE_NETFILTER=y" in /etc/sysctl.conf ??

No. This is an option in your kernel config.
Search the net about building a kernel.

And, in the second iptables command what is physdev
and physdev-in?? Does this mean physdev= eth0 and
physdev-in = eth1??

man iptables

-m physdev => iptables will use the physdev module (-m)
--physdev-in eth1 => the incoming (physical) device is eth1

Sorry for my quetion. I am newbie in iptables and
don't understand very well?

My another qutesion is, do I need to use NAT command
in iptables? As I have all public address and why I
have to use NAT to redirect?

NAT and REDIRECT is mainly to support a firewalled network or change thesource/destination of a connection.

Jon.

Swifty

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Bridge Transparent Proxy, Jon Tim Re: Bridge Transparent Proxy, Robert LeBlanc Re: Bridge Transparent Proxy, Pascal Hambourg Re: Bridge Transparent Proxy, Jon Tim Re: Bridge Transparent Proxy, Gáspár Lajos <= Re: Bridge Transparent Proxy, Grant Taylor Re: Bridge Transparent Proxy, Robert LeBlanc Re: Bridge Transparent Proxy, Grant Taylor Re: Bridge Transparent Proxy, Pascal Hambourg Re: Bridge Transparent Proxy, Grant Taylor NAT addresses - RFC or tradition?, Paul Blondé Re: NAT addresses - RFC or tradition?, Andre Guimarães Re: NAT addresses - RFC or tradition?, Tim Evans Re: NAT addresses - RFC or tradition?, Marius-Iulian Corici Re: NAT addresses - RFC or tradition?, Leonardo Rodrigues Magalhães

Previous by Date:	Re: Conntrack rule timeout problem, Gáspár Lajos
Next by Date:	Re: Conntrack rule timeout problem, Pat Riehecky
Previous by Thread:	Re: Bridge Transparent Proxy, Jon Tim
Next by Thread:	Re: Bridge Transparent Proxy, Grant Taylor
Indexes:	[Date] [Thread] [Top] [All Lists]