[Bridge] transparent bridge and proxies
Marek Kierdelewicz
marek at koba.pl
Thu Aug 24 11:20:32 PDT 2006
> Now, for the twist. For development and testing, I assigned an ip
> address and gateway to the bridge. I need to be able for a "non-it"
> person to install this box without having to set it up at all , so it
> cannot have an ip address assigned, as it *may* be in use somewhere
> else on the lan or router.
One sure and elegant solution is using dhcpcd for bridge adressing.
Unfortunately this requires dhcp server on the net. Dhcp would also
ensure ip clashes avoidance.
Loot at http://www.isc.org/index.pl?/sw/dhcp/.
> So, I changed the ip address to 0.0.0.0. Everything except squid
> still worked. I presume that's because it does not know how to route
> the data to get stuff.
I don't think you could make squid work without IP address assigned.
> Can I add a rule to iptables or something to say "anything that's
> come from eth1 into the local box, after processing send to eth0" and
> vice-versa ?
Squid needs dns access and needs to know where to direct it's
requests.
regards,
--
Marek Kierdelewicz
Kierownik Dzia?u Systemów Sieciowych, KoBa
Manager of Network Systems Department, KoBa
tel. (85) 7406466; fax. (85) 7406467
e-mail: admin at koba.pl
More information about the Bridge
mailing list