[Shorewall-newbies] Shorewall bridging

Sakthivel Subramanian sakthi at altair.com
Tue Mar 9 13:10:10 PST 2004

Thanks Tom,

That answers my question. I am not going to touch our gateway machine. I
might experiment it on a different machine.



-----Original Message-----
From: Tom Eastep [mailto:teastep at shorewall.net] 
Sent: Tuesday, March 09, 2004 4:05 PM
To: List for New Shorewall Users; sakthi at altair.com
Subject: Re: [Shorewall-newbies] Shorewall bridging

On Tuesday 09 March 2004 12:59 pm, Tom Eastep wrote:
> On Tuesday 09 March 2004 12:49 pm, Sakthivel Subramanian wrote:
> > Tom,
> >
> > Currently I have a firewall machine with shorewall running on a 3 
> > interface configuration, the firewall machine also acts a proxy 
> > server (SQUID). I am thinking of replacing it with a bridged 
> > firewall with shorewall. If I switch to a bridged firewall and 
> > assign an IP to the bridge interface can I still use the firewall 
> > machine as a web proxy ?
> I don't know. One of the reasons that I am making the experimental 
> bridging code available is so people can try it and find out what does 
> and doesn't work.
> > Also in the shorewall.net you have a note that shorewall bridge code 
> > is experimental. What does it mean ?
> It means that the code is experimental. It is currently not released. 
> It may or may not become part of a future Shorewall release.

It also means that if something doesn't work, I don't promise to fix it any 
time soon. In short, it means that you probably don't want to consider the 
Shorewall bridging code for production use.

Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net

More information about the Shorewall-newbies mailing list