http://www.securityfocus.com/infocus/1737
The 'classic' firewall solution is enabled in a router. This works, but there are administrative and performance costs to such a solution. This article explains how a transparent bridge can be set up to be a firewall also, and what some of the drawbacks and benefits of such an approach can be. Intelligently applied, using a transparent bridge can boost security without penalizing perfomance.
The article provides links to Linux resources for implementing bridging firewalls, although there is no particular reason why this technique should be confined to Linux.
Posted by jho at October 28, 2003 08:05 AM