You are not logged in.
Got a box up with x2 Ethernet NICs. I want to set it up as a firewall for my home internet connection. ie
Internet ==> Cable modem ==> Wifi Router ==> ( Client 1, Client 2, ... )
I want it to be like this:
Internet ==> Cable modem ==> Arch Box Firewall ==> Wifi Router ==> ( Client 1, Client 2, ..)
So all traffic between the internet and my LAN passes through the arch box transparently. Nobody on the LAN is aware of the box, but the box can keep a log or capture of all traffic passing through it *in both directions*.
If the log becomes too much, I can change the settings to just capture certain events - such as external-to-internal connection attempts, port scans ... or internal-to-external attempts, such as attempts to view a particular website.
I guess I need a firewall package that is capable of this, or at least a way to log all data flow. Right??
The router I have already performs NAT (and it seems impossible to disable it) so, since the box sits outside the NAT'd LAN, I guess it would not have knowledge of which individual client accessed a specific service or conversely which client was accessed from the internet... right??
Offline