* Help with Access Point firewalling
@ 2004-08-18 11:48 Steve Comfort
2004-08-18 12:03 ` Michael Gale
0 siblings, 1 reply; 2+ messages in thread
From: Steve Comfort @ 2004-08-18 11:48 UTC (permalink / raw)
To: netfilter
Hi all,
I'm working on an embedded scenario that has got me a bit stumped, and
thought maybe one of the guru's here could help out.
The device is based around an IXP processor and has an ethernet and a
wireless interface. When the wireless interface is configured as managed
(ie its a client) I have no problem and am happily using a modification
of Oskar Andreaason's firewall script to do the firewalling. Everything
works fine.
However, what should I be doing if the device is configured as an Access
Point? I figured I need to allow in NEW TCP connections, but don't know
whether I will be able to use iptables to masquerading between the wlan
port and the eth port, (ie will the MASQUERADE target forward packets
received on the WLAN to the ETH interface ?) or whether I will have to
add a bridge and use ebtables?
Any advice would be appreciated!
Best regards
Steve
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Help with Access Point firewalling
2004-08-18 11:48 Help with Access Point firewalling Steve Comfort
@ 2004-08-18 12:03 ` Michael Gale
0 siblings, 0 replies; 2+ messages in thread
From: Michael Gale @ 2004-08-18 12:03 UTC (permalink / raw)
To: netfilter
Hello,
I have never used a wireless interface yet but as long as you have ip_forwarding enabled it should forward the packets
across the interfaces, the clients must be setup to route packets to the wireless interface either by a default route or
a routing table entry.
If you want the packets to be MASQUERADE that should be as simple as adding a rule for packets leaving the interface.
Michael.
On Wed, 18 Aug 2004 13:48:18 +0200
Steve Comfort <steve@4Dllc.com> wrote:
> Hi all,
>
> I'm working on an embedded scenario that has got me a bit stumped, and
> thought maybe one of the guru's here could help out.
>
> The device is based around an IXP processor and has an ethernet and a
> wireless interface. When the wireless interface is configured as managed
> (ie its a client) I have no problem and am happily using a modification
> of Oskar Andreaason's firewall script to do the firewalling. Everything
> works fine.
>
> However, what should I be doing if the device is configured as an Access
> Point? I figured I need to allow in NEW TCP connections, but don't know
> whether I will be able to use iptables to masquerading between the wlan
> port and the eth port, (ie will the MASQUERADE target forward packets
> received on the WLAN to the ETH interface ?) or whether I will have to
> add a bridge and use ebtables?
>
> Any advice would be appreciated!
>
> Best regards
> Steve
>
>
>
>
>
>
--
Michael Gale
Network Administrator
Utilitran Corporation
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2004-08-18 12:03 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-08-18 11:48 Help with Access Point firewalling Steve Comfort
2004-08-18 12:03 ` Michael Gale
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox