Firewall br0

Firewall br0

[ml]

Hello List,

i have a linux box with 3 interfaces.
- Internet
- 2nd Company Network
- Internal Network

Physically it looks like this:
--------------------------------
ppp0 (Internet), eth0 (plugged into DSL Modem)
eth1 (External-Network, 10.10.10.1/24)
eth2 (Internal-Network, 10.10.10.2/24)

I thought of setting up a bridge with eth1 and eth2, which would "merge" 
the two networks together and i would get br0.

Now I have the problem that I still want to firewall eth1 and eth2!
E.g. I only want to allow traffic going to 10.10.10.100-200 (on serveral 
ports) to leave interface eth1.

Can someone point me to the right place for more infos or examples?

Thanks, Mario

Re: Firewall br0

[Gáspár Lajos]

ml@bortal.de írta:
> Hello List,
>
> i have a linux box with 3 interfaces.
> - Internet
> - 2nd Company Network
> - Internal Network
>
> Physically it looks like this:
> --------------------------------
> ppp0 (Internet), eth0 (plugged into DSL Modem)
> eth1 (External-Network, 10.10.10.1/24)
> eth2 (Internal-Network, 10.10.10.2/24)
>
> I thought of setting up a bridge with eth1 and eth2, which would 
> "merge" the two networks together and i would get br0.
>
> Now I have the problem that I still want to firewall eth1 and eth2!
> E.g. I only want to allow traffic going to 10.10.10.100-200 (on 
> serveral ports) to leave interface eth1.
>
> Can someone point me to the right place for more infos or examples?
Check the physdev match...

Swifty
>
> Thanks, Mario
>