[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Transprent Firewall over PPP

To: misc@openbsd.org
Subject: Re: Transprent Firewall over PPP
From: Philipp Buehler <OpenBSD@fips.de>
Date: Thu, 1 Aug 2002 13:03:49 +0200
Mail-Followup-To: misc@openbsd.org
References: <20020730231227.09c42216.gregf@elitepimps.org> <20020730231227.09c42216.gregf@elitepimps.org> <20020731104455.A11783@pohl.fips.de> <4.3.2-J.20020801091500.00c4ae40@172.16.24.10>

On 01/08/2002, Dirk Rosler <dirk@unicircuits.com> wrote To misc@openbsd.org:
> >Client----Bridge----DSL-Modem----DSLAM/Internet
> >
> >Where one uses PPPoE between Client and DSL-Modem.
> >
> >pf(4) on the Bridge could peek into the PPPoE packets.
> 
> As the external interface will be a dynamically assigned address, and 
> internal addresses probably private addresses, how will that work on a 
> bridge? Can you NAT on a bridge?

No. A bridge has per-se no IP addresses. The assigned IP is at the Client,
that's the whole point.

> I am also thinking in a WLAN context here, where a wireless interface 
> operates in true access point/hostap/bridge mode and the other interface is 
> PPPoE DSL...

Bleh, you really dont understand. The bridge is doing *nothing* except filtering.

If you go into this "context", it would be a router and doing PPPoE on its own,
like it is now already capable of.

ciao
-- 
Philipp Buehler, aka fips | sysfive.com GmbH | BOfH | NUCH | <double-p> 

#1: Break the clue barrier!
#2: Already had buzzword confuseritis ?

Follow-Ups:
- Re: Transprent Firewall over PPP
  - From: Dirk Rosler <d.rosler@jens.co.jp>

Prev by Date: Re: OpenBSD 3.0 and X on Nvidia GeForce2 Go
Next by Date: Re: openssh trojaned..
Prev by thread: RV: [UNIX] OpenSSH Trojaned (Version 3.4p1)
Next by thread: Re: Transprent Firewall over PPP
Index(es):
- Date
- Thread