SuSEfirewall2 as bridging firewall
Good Morning list, I have following problem: I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 .... So my question: is it possible to get this setup working at all? Any comments appreciated. Thanx in advance, Christian internal net ---- bridge ---- router ---- external net
Hi, you did compile Bridging-Support into iptables? (There is a patch, .. somewhere.. in the Net ;-)) I read this a couple of weeks ago in CT, or IX, or Linux-Magazin, sorry can`t remember. Greetings Dirk Christian Richter schrieb:
Good Morning list, I have following problem:
I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 ....
So my question: is it possible to get this setup working at all?
Any comments appreciated.
Thanx in advance, Christian
internal net ---- bridge ---- router ---- external net
I don't understand your setup fully. How many ethernet cards do you have and what do they all do? Am I right in saying that there is only one machine running SuSE Linux 9.0 in the configuration you are describing? Normally a bridge is an alternative to a router/firewall and would not be built into the same device. If you have 3 cards and are both bridging and routing at the same time then this will be complicated to set up! Regards, Carl ----- Original Message ----- From: "Christian Richter" <richter@td.mw.tum.de> To: <suse-security@suse.com> Sent: Thursday, January 29, 2004 10:32 AM Subject: [suse-security] SuSEfirewall2 as bridging firewall
Good Morning list, I have following problem:
I have been unable to set up a working SuSEfirewall2 on a bridge running on a SuSE 9.0 system using kernel 2.6.1 (also tried the supplied 2.6.0-test-5, but didn't change anything). The bridge is working fine, the firewall loads and runs without errors, I can see logs that make quite sense. Only what doesn't work is the forwarding. No matter from where I try to forward where I receive a message like: SuSEfirewall ILLEGAL-ROUTING phsyindev=eth0 physoutdev=eth1 ....
So my question: is it possible to get this setup working at all?
Any comments appreciated.
Thanx in advance, Christian
internal net ---- bridge ---- router ---- external net
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
participants (3)
-
Carl Peto -
Christian Richter -
Dirk Schreiner