Hi, I've been using iptables as a firewalling router for a year and it's worked brilliantly. (O/T: It went into service after the Cisco-qualified engineers failed to get their Cisco kit to meet our modest requirements!). I now have a new requirement for just a firewall, i.e. no routing. So the LAN will connect to one NIC and the other NIC will connect to the ISP router. So I assume that this will require a "virtual" bridge device to be set up. And I've read that this isn't straightforward to get iptables to work in this configuration. So my question is: as an existing iptables user, should I be able to set up a box for firewalling only as described? If so, is there any (good!) documentation on this? Or would I be better off with a firewall "appliance"? Thanks in advance for any advice, Leon...
