Is possible to use astaro in transparent mode? I need to install Astaro with the same class of ip address in internal and external Interface. Obciusly i cannot use Nat/masquerading...
I'm assuming you mean using it in bridge mode.
No, ASL cannot be used this way.
You can build your own bridge firewall, it isn't all that difficult now that the 2.6 kernel has the bridge-netfilter functionality built into the kernel as well as iptables and ebtables. There's also a precompiled Redhat kernel available that has the br-nf patch pre-applied. I used the same thing at home between my ASL and linksys router before IPS/Snort was included in the ASL product.
this link has a ton of useful information about building a bridge-firewall.
http://www.honeynet.org/tools/index.html
I'm assuming you mean using it in bridge mode.
No, ASL cannot be used this way.
You can build your own bridge firewall, it isn't all that difficult now that the 2.6 kernel has the bridge-netfilter functionality built into the kernel as well as iptables and ebtables. There's also a precompiled Redhat kernel available that has the br-nf patch pre-applied. I used the same thing at home between my ASL and linksys router before IPS/Snort was included in the ASL product.
this link has a ton of useful information about building a bridge-firewall.
http://www.honeynet.org/tools/index.html
