I have some servers plugged intro a very large subnet full of all
sorts of other machines (workstations [running Netware], desktops,
other servers, cash registers):
I would like to firewall my servers from the other machines on the
subnet (netware IPX packets and Windows viruses), and also prevent my
IPv6 router advertisements from leaving my little segment.
From my experiments, it doesn't look like m0n0wall does any Layer 2
firewalling when running bridged mode ? Both my IPv4 and IPv6 packets
were being bridged across, so I guess this means AppleTalk, IPX etc
will be too.
If I used a Proxy ARP setup, would it have the right effect of only
allowing IPv4 through ?
Any better way of doing it ?
ps. very impressed with how clean and compact m0n0wall is - a lot
nicer than the open source competitors I have looked at :)