Stealthy packet filter
I want to set up a linux box to do some custom packet filtering. I would like to be able to plug it into existing networks, without the box needing and network information such as an IP.
I have a box set up with 2 NICs eth0 and eth1, both have null IP. Basically, I want all Internet traffic to pass freely between eth0 and eth1. eth0 should mirror what comes in to eth1 and vise versa, except for what I choose to filter out.
Is this Possible?
If you do not want to set an IP on your NICs, you would have to set up Linux to act like a bridge. You can do this with ebtables.