[BBLISA] Limoncelli Article "Firewall is a Bridge"
Daniel Feenberg
feenberg at nber.org
Sat Jul 16 08:30:51 EDT 2016
We'd like to isolate a few machines from the rest of our LAN without
renumbering them into a subnet.
In 1999 Tim Limoncelli wrote a very interesting article titled "Tricks you
can play if your firewall is a bridge". Section 6 appears to outline just
what we are looking for. It is up on the Usenet website at:
http://static.usenix.org/legacy/publications/library/proceedings/neta99/full_papers/limoncelli/limoncelli.pdf
I was wondering if anyone knew of firewall hardware or software with these
capabilities, of if ordinary open source software such as iptables or
pfsense could do these things. Tim only mention Lucent hardware. Where
would we look?
Thanks
dan feenberg
NBER
More information about the bblisa
mailing list