Hi guys,
I'm totaly stuck with a problem and I could use your help
.
Topology: Modem - Router (192.168.77.254) - bridge - switches. The idea is to configure the bridge as a firewall for the network.
I started with installing the bridge utils (apt-get install bridge-utils). After that i made the bridge (brctl addbr br0) and added my interfaces to the bridge (brctl addif eth0 p1p1).
After this i changed my /etc/network/interfaces:
# The loopback network interface
auto lo br0
iface lo inet loopback
# The primary network interface
auto p1p1
iface p1p1 inet manual
auto eth0
iface eth0 inet manual
#
auto p2p1
iface p2p1 inet static
address 192.168.77.121
netmask 255.255.255.0
gateway 192.168.77.254
dns-nameserver 8.8.8.8
#
auto br0
iface br0 inet dhcp
bridge_ports p1p1 eth0
As you can see i've one management interface for SSH access.
Okay, so after this i placed this PC between my router and core-switch and it's working. When i unplug one cable, i've no internet, so the bridge is working.
Now that the bridge is working, i made some iptables rules. For testing purpose i inserted the following rules:
iptables -A INPUT -p tcp --dport 22 -j ACCEPT
iptables -A INPUT -j DROP
iptables -A FORWARD -j DROP
iptables -A OUTPUT -p tcp --sport 22 -j ACCEPT
iptables -A OUTPUT -j DROP
Now the following problem occurs: i can still use the internet, the iptables are not working!
Can please someone point me to the right direction, cuz like i said, im stuck.
Thanks!
