Re: Can I run services on the bridge?
> The box I would like to setup as my
> bridge is currently running services
> such as http and ftp that are being
> served to the internet via port
> forwarding on my router. Will this
> still be possible if the box is setup to
> act as a bridge? If it's possible, is
> it safe?
Yes, it is possible, in fact if you assign an IP to your bridge your router can see it as a normal computer, so if you open port 81 (and run apache), you can redirect web requests to it. I suggest to run apache on a different port that 80 (81 is fine). Because IMHO iptables will redirect it to squid, and maybe squid will redirect it to your router and your router redicting to the bridge, and squid redirectig to the router, and... you will end with a loop. So do not use 80, in fact you dont need it, your traffic incoming traffic to por 80 (to www.yoursite.com) will be redirected by the router if you configure it to do so (to port 81).
In the other hand, if it is safe or not is subject to how do you define safety.
We have a two-NIC machine acting a as bridge, everything it receives on one nic is "blindly" passed to the other, only web traffic is redirected to squid, and incoming traffic to port 81 will be served by apache. It is a fancy configuration but it should work.
The only problem is that squid consumes a lot of memory and hard disk, and the traffic on the bridge consumes CPU. You only have to worry is you are running a site with lots of concurrent hits ( you certainly cannot run www.google.com on top of this :-P )
> except for some cases which, I heard,
> were normal problems (like refresh
> problems with Internet Explorer).
There is a workaround for refresh problems in IE. Check your squid.conf comments and sample settings.