News: This forum is now permanently frozen.
linktree m0n0wall Forum  >  m0n0wall Support (English)  >  General Questions
linktree Topic: Need a layer 2 firewall - having trouble setting
Pages: [1]
Topic: Need a layer 2 firewall - having trouble setting  (Read 1761 times)
« on: August 01, 2008, 07:14:30 »
Remyx *
Posts: 2
Hi,

I am trying to use m0n0wall as a layer 2 (bridging) firewall. However it doesn't work as planned.

Here's my config:

WAN Interface
IP 10.191.236.247 /24
connected to WAN interface is PC-WAN with 10.191.236.248 /24

OPT1 Interface
bridge with WAN
(no IP address)
connected to OPT1 interface is PC-OPT1 with 10.191.236.249 /24

For testing purposes, I have a FW rule on both WAN and OPT1 allowing ANY ANY


Here's where things get weird.

From the FW I can ping both PC-WAN and PC-OPT1

From PC-OPT1 I can ping the FW WAN interface, but can't ping the PC-WAN.
Looking at a packet dump, it see the ARP request getting from PC-OPT1 to PC-WAN but the response doesn't reach PC-OPT1.
The FW ARP table shows all the hosts on the WAN interface.

Not sure what to do at this point, I can't seem to find a way to configure the ARP entries on the FW.

Any help would be greatly appreciated.
BTW, I tried this with both "Enable filtering bridge" turned on and off, same result.

Thanks,
Remy
« Reply #1 on: August 01, 2008, 07:23:55 »
Remyx *
Posts: 2
I saw a few examples, the link below is exactly what I am trying to do, but it doesn't work as expected.

http://doc.m0n0.ch/handbook/examples-filtered-bridge.html

Thanks,
Remy
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines