Find Jobs
Hire Freelancers

Program a micro device with two Ethernet interfaces to share an Ethernet connection with a 3rd device

$750-1500 USD

进行中
已发布大约 5 年前

$750-1500 USD

货到付款
Details are included in the preliminary document. In short, we would like someone to create a prototype using one of several cheap microdevices (listed in document) that can be attached in-line to an existing device with an Ethernet connection and "share" the connection as well as secure (and re-route) specific types of communications. There are good reasons why a micro-VPN is not what we would like and this is NOT for a man-in-the-middle attack (otherwise, we'd just purchase a bunch of packet-squirrels), this, as explained in the document and which I am happy to explain further, so that we can secure legacy devices which for a number of reasons we cannot update and for which VPN appliances are impractical and/or not desired. NOTE: If you are able to meet most or all of the functional requirements by simply setting up bridge and/or tunnel interfaces and setting up the appropriate ebtables or iptables rules (which should be possible), we would still like s prototype which can reasonably be configured, preferably by a program (c, c++, Python, etc.) and not a series of bash scripts. Language is not important, but the ability to understand Ethernet transport layer and TCP/IP and UDP is. ============ Part ONE: Part one is JUST the portion that allows for sharing the Ethernet connection (IP address and MAC) of the attached device. If I can connect the SECBOX to DEV and NET, have it behave as a transparent bridge except for the communications with specific interface:source:dest combinations and if I can have a process on SECBOX send and receive communication to and from those special addresses using the MAC and IP of the DEV. That's all for part one. I think that this can mostly be done by setting up a bridge, possibly a tun device (depending on how you want to do it, I don't really care), some ebtables/iptables rules and some routing rules. Delivery is just what is needed to set this up on any Linux device (not just OpenWRT, of pfSense, for example) and something that shows we can send and receive to special addresses without those packets/frames getting to DEV. Bonus: Show that SECBOX can make a DNS request without making it impossible for DEV to make a DNS request. Little Background: I have a few working prototypes: One in pure c One in pure python One using python to configure iptables/ebtables with bridge/tunnel setup The pure python/c ones worked well and did almost everything, but outside of kernel space, so they drop/miss packets and can't do the kernel based routing. The ebtables/iptables version is not working any more and I don't want to debug / figure this out. Parts TWO and THREE are the more involved implementations with the mini-firewall setup, and reconfiguration [login to view URL] then NAT puch-through and rendezvous capabilities both of which are further down the road. After having some back and forth with some colleague and my adviser on Freelancer, I think I need to write them (parts two and three) out as separate bids. I may even be posting them as time and material. NOTE: The intention is to eventually take this to a custom SOC implementation with the "link sharing" portion being FPGA programmed in and the rest (SPROC(s) in the doc) running on an ARM with a mcro linux kernel.
项目 ID: 18877062

关于此项目

8提案
远程项目
活跃5 年前

想赚点钱吗?

在Freelancer上竞价的好处

设定您的预算和时间范围
为您的工作获得报酬
简要概述您的提案
免费注册和竞标工作
颁发给:
用户头像
origintal: oldbox-----Internet new: oldbox---SECBOX---internet I can develop this in my office I have a free linux server with multiple nics to use for development (dellrc200) to use as SECBOX-DEV . I will use a wrt54g as a dummy holder for oldbox, and i will use my own internet connection. I will create a proof of concept SECBOX either using brctl to make a transparent bridge, or I may come up with another way to do this without brctl just using l3 routing and iptables . I will be able to let you know after I draw up my own test case diagram and do some experimenting. The complication with this is only because I think that we have to use the same IP and MAC so that it does not disturbe the network topology, because of using the same MAC ID on the Bridge and the oldbox, this could be an issue, so I will have to complete a discovery process where I ask questions as I'm going through various design methods , but I would hope to do this as a bridge, but its possible it could end up being a router because of the MAC conflict, again I have to go through a process of asking questions and it will have to be done in an organized fassion as I draw up various test case diagrams and test implimentation, my diagrams will include real mac and IP's although they will be my own network lab macs /ip's for testing , whenI have a succesfull implimentation I will help you impliment your own test case. at first things will be mocked up in bash, and then we can move to c or pythn.
$777 USD 在14天之内
5.0 (6条评论)
3.2
3.2
8威客以平均价$1,653 USD来参与此工作竞价
用户头像
Hi, I am an Electronics and computer science engineer, I have experience working with various prototyping boards, Raspberry Pi, Arduino, mbed (ARM proto board)... as well as developing custom PCBs, you can find some of my projects on my portfolio. Looking at the description, I think I can do it. But I'll look more into it and the document you provided soon. (tought I post my bid to not forget about it) I pride myself on ensuring that the customer is satisfied with the quality of the work and strive to sustain good communication and complete the project (5-star reviews/ 100% completion rate) Looking forward to working with you. Regards, Nabil
$2,058 USD 在25天之内
5.0 (13条评论)
5.1
5.1
用户头像
Hi there, I have checked the details I have great experience with Computer Security, Linux, Network Administration, Python. Please start the chat so we can discuss this job more in detail. Thanks
$1,250 USD 在20天之内
5.0 (4条评论)
5.3
5.3
用户头像
hello,how are you. i read your bid carefully. i am c/c++, python expert and have full experience for 10 years. c/c++, python is my top skill and i can convert from python to c language with your compresssion algorithm. i can provide most quality and high speed. if you want to success, please contact me. Then, I will give you good result to the proposals. hire me.
$1,250 USD 在20天之内
4.4 (3条评论)
5.5
5.5
用户头像
Hi my name is DongJun. I am an experienced web developer. I have read the project requirements and I am very interested in your project. I can start work right now. I will make your website look very nice, modern and professional. I will make the website load fast, SEO friendly and responsive to all mobile devices as well. I will deliver you great result asap. If you check my portfolio, you will know my skills surely and will be satisfied with my work. Please feel free to test my skill for your project. Thank you.
$1,250 USD 在20天之内
0.0 (0条评论)
0.0
0.0
用户头像
Hello, I am quite intrigued by your project posting and would like to be a part of this. Do let me know what are the next steps to get ourselves considered for the project. Looking forward to hearing from you soon. Regards
$1,388 USD 在20天之内
0.0 (0条评论)
0.0
0.0
用户头像
Hi As I see your application you need a small secure bridge working on those secureboxes which are attached for device and internet and which have firewall to ensure security. I advice you to use Nexx as it supports Openwrt which has good firewall, easy UI and lots of features which may be needed in future. It is very modular and you can enhance to do other things too. If you prefer Nexx I will cut my price to half and finish working on the project in one week. I may write a module for that where you can configure firewall by iptables with some GUI if you prefer. Thanks Archil
$4,000 USD 在20天之内
0.0 (0条评论)
0.0
0.0

关于客户

UNITED STATES的国旗
Somerville, United States
5.0
1
付款方式已验证
会员自9月 8, 2006起

客户认证

谢谢!我们已通过电子邮件向您发送了索取免费积分的链接。
发送电子邮件时出现问题。请再试一次。
已注册用户 发布工作总数
Freelancer ® is a registered Trademark of Freelancer Technology Pty Limited (ACN 142 189 759)
Copyright © 2024 Freelancer Technology Pty Limited (ACN 142 189 759)
加载预览
授予地理位置权限。
您的登录会话已过期而且您已经登出,请再次登录。