Date: Sat, 24 May 2014 13:12:10 -0700 From: Alfred Perlstein <alfred@freebsd.org> To: freebsd-stable@freebsd.org Subject: Re: What is your favourite/best firewall on FreeBSD and why? Message-ID: <5380FD1A.9040803@freebsd.org> In-Reply-To: <20140520070926.GA92183@The.ie> References: <20140520070926.GA92183@The.ie>
next in thread | previous in thread | raw e-mail | index | archive | help
On 5/20/14 12:09 AM, Lucius Rizzo wrote: > I have been looking into articles comparing firewalls that come with > FreeBSD. There isn't much recent info on the net. I am currently using > FreeBSD 10 with IPFilter. > > Firewalls are like MTA servers I find. Each person has their own > proclivities. I happened to have started with IPFilter with Solaris and > throughout Solaris years. Lately, on my Linux servers, I end up running > ufw as lazy man's iptables cli frontend which is easy enough. > > Ultimately, outside configuration differences all firewalls are essentially > serve the same purpose but I wonder what is your favorite and why? If > you were to run FreeBSD in production, which of the three would you > choose? IPFilter, PF or IPFW? > > Also there is a lack of good interesting rule sets in the BSD realm. With > Linux, there was even a iptables rule set to prevent heartbleed. If you use any > of the firewalls, and have interesting or even optimized rule sets, I > would really like to see them :) > > Regards, > I prefer IPFW because generally my configs are relatively simple and the rules just read naturally to me as opposed to the other systems. It reads very easily and since I'm generally doing basic things it's nice not to have to think too hard about what I am trying to do. -Alfred
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5380FD1A.9040803>