Transparent bridge and proxy - with only lo?

Transparent bridge and proxy - with only lo?

[bldrnorth]

While there is no shortage of documentation on setting up a
transparent bridge with Squid proxy, I have only seen examples that
assign an IP address to the bridge interface.  In my circumstances,
the bridge is between the ISP's bridge and our own router, such as:
(ISP Bridge) <--->(Our Bridge)<--->(Our router).  Typical I'm sure,
but Our router is assigned only 1 IP address so I really don't have an
IP address to assign the bridge interface.  Here's how I'm setup:

brctl addbr br0
brctl addif br0 eth0
brctl addif br0 eth1
ip link set br0 up
# Normally, would assign an IP address to br0 and a default route

I was thinking I should be able to re-direct to the localhost
interface 127.0.0.1, or perhaps assign an address like 127.0.0.2 to
br0, but then could not figure out the appropriate iptables and route
command.  I'm sure I could assign br0 a private ip address, but then
wouldn't be sure how to tell it to route.  Here's all I have so far...

ebtables -t broute -A BROUTING -p IPv4 --ip-protocol 6 \
        --ip-destination-port 80 -j redirect --redirect-target ACCEPT

If I've completely missed where this has been addressed somewhere else
I'd appreciate a link or some advice here.

Thanks!

Transparent bridge and proxy - with only lo?

[bldrnorth]

Hi:

While there is no shortage of documentation on setting up a
transparent bridge with Squid proxy, I have only seen examples that
assign an IP address to the bridge interface.  In my circumstances,
the bridge is between the ISP's bridge and our own router, such as:
(ISP Bridge) <--->(Our Bridge)<--->(Our router).  Typical I'm sure,
but Our router is assigned only 1 IP address so I really don't have an
IP address to assign the bridge interface.  Here's how I'm setup:

brctl addbr br0
brctl addif br0 eth0
brctl addif br0 eth1
ip link set br0 up
# Normally, would assign an IP address to br0 and a default route

I was thinking I should be able to re-direct to the localhost
interface 127.0.0.1, or perhaps assign an address like 127.0.0.2 to
br0, but then could not figure out the appropriate iptables and route
command.  I'm sure I could assign br0 a private ip address, but then
wouldn't be sure how to tell it to route.  Here's all I have so far...

ebtables -t broute -A BROUTING -p IPv4 --ip-protocol 6 \
       --ip-destination-port 80 -j redirect --redirect-target ACCEPT

If I've completely missed where this has been addressed somewhere else
I'd appreciate a link or some advice here.

Thanks!

Re: Transparent bridge and proxy - with only lo?

[Gáspár Lajos]

Hi!

bldrnorth@gmail.com írta:
> Hi:
>
> While there is no shortage of documentation on setting up a
> transparent bridge with Squid proxy, I have only seen examples that
> assign an IP address to the bridge interface.  In my circumstances,
> the bridge is between the ISP's bridge and our own router, such as:
> (ISP Bridge) <--->(Our Bridge)<--->(Our router).  Typical I'm sure,
> but Our router is assigned only 1 IP address so I really don't have an
> IP address to assign the bridge interface.  Here's how I'm setup:
>
>   
What about a private IP on the brigde?

> # Normally, would assign an IP address to br0 and a default route
>   
(nod)
> I was thinking I should be able to re-direct to the localhost
> interface 127.0.0.1, or perhaps assign an address like 127.0.0.2 to
> br0, but then could not figure out the appropriate iptables and route
> command.  I'm sure I could assign br0 a private ip address, but then
> wouldn't be sure how to tell it to route.  Here's all I have so far...
>
>   
127.0.0.1/8 is not this kind of playground :D

Swifty