|
Title: Transparent Bridge mode of Endian Post by: mkuwata on Sunday 13 March 2011, 08:24:11 pm Dear Sir,
I have been using Untangle as a transparent firewall sitting between router and LAN. The configuration is as follows; --(Untrusted network)-- Router--Untangle--(LAN) I am trying to replace Untangle with Endian for a while, however, I still could not figure out how to configure EFW as a transparent bridge. In this scenario, GREEN interface and RED interface should be bridged. I could configure RED interface with DHCP and it gets 192.168.0.4 from Router. I also configured GREEN interface with a Static IP (192.168.0.200). What I would like to do is; 1. Bridge RED and GREEN interface. 2. PCs in LAN will use DHCP (Router is a DHCP server). 3. Traffic between GREEN and RED will be monitored (and filtered) by Endian. Can anyone kindly advise how to configure Endian? Best regards Title: Re: Transparent Bridge mode of Endian Post by: mkuwata on Monday 14 March 2011, 01:04:11 pm Hi, I had a chance to speak with Endian people and heard as follows;
"Endian Firewall currently supports bridge mode only in a same zone. If you want touse bridge mode, you have to configure two interfaces in a same zone and use intra-zone firewall." For this case, it will be required to configure two GREEN interface (with same subnet) although i did not confirm it yet. Regards :D Title: Re: Transparent Bridge mode of Endian Post by: mkuwata on Tuesday 15 March 2011, 04:19:31 pm I have confirmed this feature with VirtualBox.
1. Configure two VMs, one is for Endian(VM1) and the other is for Ubuntu(VM2). 2. VM1 is equipped with three virtual ethernets (eth0, eth1, eth2) with the following mapping; virtual ethernet Type of ethernet GREEN/RED ------------------- --------------------- -------------- eth0 GREEN Internal eth1 RED Internal eth2 GREEN bridged to NIC 3. VM2 has only one virtual ethernet with Internal. This configuration allows a traffic to be carried in a scenario of; (Untrusted network)---eth2---(Endian)---eth0---(Ubuntu) Regards ;D Title: Re: Transparent Bridge mode of Endian Post by: Nick57 on Friday 17 June 2011, 11:55:08 pm Hi, I see you managed to get it working in a VM, but is this same Bridge mode (transparant) possible on Red->Green only on a standalone firewall?
I have a public IP range and can only use this Bridge mode to put the firewall in place (between router and switch) without having to rearrange all ips for the Server. My test firewall has only 2 ports so can only use RED/GREEN Regards, Nick Title: Re: Transparent Bridge mode of Endian Post by: mkuwata on Sunday 28 April 2013, 05:16:42 pm Sorry for the late response - Nick57
I am afraid that my work around requires at least three interface and two of those have to be GREEN -- this is why I used VM. Rgds |