Chris Hedemark on Wed, 23 Apr 2003 06:29:17 -0400


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] firewall


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Tuesday, April 22, 2003, at 10:44 PM, sean finney wrote:

but all this "yes, it'll even run on this crappy machine" aside,
i think the real reason why one of the BSD's is the good choice here
is the ipf and ipnat duo.  the configuration files for these are really
straightforward, almost prose like really, and give you lots of
control.  just make sure you have console access when you start
messing with the filter rules :)

And for those who don't follow OpenBSD, ipf was replaced in OpenBSD a few releases ago with a ground-up re-implementation called "pf". pf was remarkably good on the first try, and has become dramatically better with every release.


- --
"Violence is the last refuge of the incompetent." -- Isaac Asimov
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (Darwin)

iEYEARECAAYFAj6maqwACgkQYPuF4Zq9lvZUMwCg7xoBPqrqKEzx0URDGGRe4D/v
9FsAnix+iX6zfTJcCpsuS03C5efArgXz
=oCMP
-----END PGP SIGNATURE-----

_________________________________________________________________________
Philadelphia Linux Users Group        --       http://www.phillylinux.org
Announcements - http://lists.netisland.net/mailman/listinfo/plug-announce
General Discussion  --   http://lists.netisland.net/mailman/listinfo/plug