HPE Community
Operating System - Linux
1823250 Members
3319 Online
109648 Solutions
New Discussion юеВ

Linux bridge

 
Werner_14
Occasional Contributor

тАО05-17-2003 06:17 AM

тАО05-17-2003 06:17 AM

Linux bridge

How correct configure bridge functionality
by using brcfg.
The "how to-Man" with description how to build up the bridge by activating kernel bridging capability and going the interfaces into promiscous doesn??t work in my configuration. Using kernel 2.4.15 SuSe Vers.8.0 and checking the same by Red Hat 7.2 give no sucess.
HW= 4 Network-Interfaces (dec, 2x 3com, olicom)
eth0 + eth1 have to be bridged. eth2 has the access to the internal sniffer LAN (No routing-
no firewall enabled)
eth3 has an direct IP-acess to corporate LAN (via DHCP)
I need a bridge to build up a sniffer-proxy.
Therefore the corporate LAN-station uses promiscous network-acess. The sniffing tools are located on to a pc using IPSec Features.
0 Kudos
Reply
3 REPLIES 3
Nicolas Portais
Frequent Advisor

тАО05-19-2003 04:57 AM

тАО05-19-2003 04:57 AM

Re: Linux bridge

Hi,

there is a HOWTo for Ethernet Bridge:
http://www.tldp.org/HOWTO/Ethernet-Bridge-netfilter-HOWTO.html

And about your error, are you verify that your linux kernel have the appropriate configuration:

"
Networking options:
[*] Network packet filtering (replaces ipchains)
[*] Network packet filtering debugging

IP: Netfilter Configuration --->:
802.1d Ethernet Bridging
[*] netfilter (firewalling) support
"

Regards,
Nicolas
0 Kudos
Reply
Werner_14
Occasional Contributor

тАО06-01-2003 04:03 AM

тАО06-01-2003 04:03 AM

Re: Linux bridge

Hey dear Nicolas Portais,
first of all thank you for the hint and your answer.
The problem was??nt solved. The reason is I have to use brcfg without any participating netfilter (IPtaples) options.
Give me a hint, if you have experiences using the PC as an bridging device, using to eth-interfaces (real eth0 an eth1 - different products - 3com an olicom) in promiscous mode, without any protocol.
the common orders are
ifconfig eth0 promisc and
ifconfig eth1 promisc
brcfg ena
the bridge reacts only with arp data-streams.
the kernel options bridging enable 802.1 was set.
If you have an idea please contact me.

thanks herbert
0 Kudos
Reply
Nicolas Portais
Frequent Advisor

тАО06-02-2003 12:46 AM

тАО06-02-2003 12:46 AM

Re: Linux bridge

Hi,

Personally, I don't have a experience with bridging but an ethernet bridge works as a router: connect two networks.

try these commands:

$ brctl addbr br0
$ brctl stp br0 off
$ brctl addif br0 eth0
$ brctl addif br0 eth1
$ ifconfig eth0 down
$ ifconfig eth1 down
$ ifconfig eth0 0.0.0.0 up
$ ifconfig eth1 0.0.0.0 up
$ echo "1" > /proc/sys/net/ipv4/ip_forward

do you have errors ? do you ping a host through the bridge ?

but to set up a proxy, the another solution is to use squid and iptables (forwarding port 80 to 8080).

Regards,
Nicolas
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.