Hello all. I’m building a firewall for a recent project. This device needs to sit inline to filter a few servers on public addresses, so I’ve bridged the 2 ethernet ports and assigned an address to it. What I would like to do is add a layer of protection by filtering certain ports to certain IPs, as well as some bandwidth limitations to these public servers.
My question is, there is the bridge filter and the firewall (forward chain) which will both allow the filtering I need (IP based). Since traffic traverses both the bridge filter and the main firewall, does it matter which is used? The main firewall seems easier, an I really don’t see the need to use the bridge firewall (filter) as all my filtering is IP based. Is there a performance hit or some reason why I shouldn’t be using the regular firewall over the bridge firewall, or is it just a matter of using which ever fits the need? Thanks.