Can this run as a 'filter' rather than a 'router'?
-
We just learned of this tool and are very interested in testing it for implementation on our networks. My first initial concern is whether this can run as a network 'filter' rather than as a router. We really just need a device to sit on our network between our router's inside interface and our first aggregation switch to capture all traffic. We need to be able to shape that traffic based on MAC address, and block MAC addresses not in a 'passthrough' list, which it seems this device can do. We just really don't want to add another true router to the network. Any advice on this would be greatly appreciated, and let me know if I need to provide more info.
Thanks,
David
-
It seems you are looking for a "transparent firewall" or "filtering bridge"
Take a look at the howto's and search the forum for these keywords.I'm not sure about the trafficshaping part.
I think in 1.2 it's not possible to shape on bridges. Not sure about the 1.3_alpha_alpha with the new shaper.It's already possible to create a static arp-table so only devices on the list are able to communicate with the device.