SuSEfirewall2 as bridging firewall
Good Morning list, I have following problem: I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 .... So my question: is it possible to get this setup working at all? Any comments appreciated. Thanx in advance, Christian internal net ---- bridge ---- router ---- external net
Hi, you did compile Bridging-Support into iptables? (There is a patch, .. somewhere.. in the Net ;-)) I read this a couple of weeks ago in CT, or IX, or Linux-Magazin, sorry can`t remember. Greetings Dirk Christian Richter schrieb:
Good Morning list, I have following problem:
I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 ....
So my question: is it possible to get this setup working at all?
Any comments appreciated.
Thanx in advance, Christian
internal net ---- bridge ---- router ---- external net
I don't understand your setup fully.
How many ethernet cards do you have and what do they all do?
Am I right in saying that there is only one machine running SuSE Linux 9.0
in the configuration you are describing?
Normally a bridge is an alternative to a router/firewall and would not be
built into the same device. If you have 3 cards and are both bridging and
routing at the same time then this will be complicated to set up!
Regards,
Carl
----- Original Message -----
From: "Christian Richter"
Good Morning list, I have following problem:
I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 ....
So my question: is it possible to get this setup working at all?
Any comments appreciated.
Thanx in advance, Christian
internal net ---- bridge ---- router ---- external net
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
participants (3)
-
Carl Peto
-
Christian Richter
-
Dirk Schreiner