From owner-freebsd-security Thu Jan 2 14:10:23 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id OAA07274 for security-outgoing; Thu, 2 Jan 1997 14:10:23 -0800 (PST) Received: from vdp01.vailsystems.com (vdp01.vailsystems.com [207.152.98.18]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id OAA07267 for ; Thu, 2 Jan 1997 14:10:20 -0800 (PST) Received: from crocodile.vale.com (crocodile [204.117.217.147]) by vdp01.vailsystems.com (8.8.3/8.7.3) with ESMTP id QAA27103; Thu, 2 Jan 1997 16:09:01 -0600 (CST) Received: from jaguar (jaguar.vale.com [204.117.217.146]) by crocodile.vale.com (8.8.3/8.7.3) with SMTP id MAA03489; Thu, 2 Jan 1997 12:34:46 -0600 (CST) Message-ID: <32CBFFC6.6A14@vailsys.com> Date: Thu, 02 Jan 1997 12:34:46 -0600 From: Hal Snyder Reply-To: hal@vailsys.com Organization: Vail Systems, Inc. X-Mailer: Mozilla 3.0 (WinNT; I) MIME-Version: 1.0 To: rohit@cs.umd.edu CC: security@freebsd.org, nash@mcs.com Subject: Re: Which Firewall : ipfw or ipfilter? References: <199701021413.JAA09309@darling.cs.umd.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk rohit@cs.umd.edu wrote: > Is one of ipfw and ipfilter accepted to be 'the' FreeBSD firewall > today? I don't have a definitive answer, but - ipfw has been part of FreeBSD longer than ipfilter, and is maturing nicely. It is actively maintained, documentation is improving, and reports of its demise are exagerated. Be sure to look at /etc/rc.firewall in any recent release for sample rule sets. [I never got around to looking into ipfilter because ipfw has always done what was needed.]