Thanks to the responses that I've gotten from this post, I've got pretty
close to a viable solution. I intend to setup a bridged interface pair
and would like the box to be "IP" less. I've gotten everything but the
"IP-less" idea working. 

Can anyone suggest what needs to be done to have this firewall run  as a
filtering bridge with no IP address needed? I believe the docs don't
cover this as it suggests giving the "WAN" interface an IP address and
bridging an OPT interface to it. 

If I can't get this to go with no IP's assigned I think I will have to
find a commercial device which I can use in this way.

I do hope monowall can do it, but I don't see how yet.

Cheers and thanks to the folks that have responded with ideas.

--p

On Fri, 2006-02-17 at 14:30, Peter Lauda wrote:
> I haven't got a lot of experience with setting up firewalls but I
> _think_ this will work. Feel free to enlighten me, please.
> 
> I want/need a firewall to sit between an outside world connection and my
> internal network. The catch: ths historical setup is horrible. No
> firewall and systems sitting in the open and barely protected. The only
> way the I can firewall ALL of the systems that need protection, I have
> to do the following:
> 
> Put a firewall at an address (wan side) that is a public address. The
> other (lan side) address will also have to be an address that is within
> the public address space of the wan side.
> 
> A - Is this going to work?
> B - Am I buying more trouble by doing it?
> 
> 
> I have a monowall box about ready to go into place but I'm worried it
> will bring the network down if I am wrong about it working.
> 
> Any advice welcome.
> 
> --p
> 
> 
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>