Date: Tue, 18 Nov 2003 14:29:29 +0100 From: Max Laier <max@love2party.net> To: "Vahric MUHTARYAN" <vahric@doruk.net.tr> Cc: freebsd-ipfw@freebsd.org Subject: Re: Which Firewall --> ipfw or iptable or ipsec Message-ID: <671461625.20031118142929@love2party.net> In-Reply-To: <030101c3ad34$79ad48d0$110d3ad4@VAHOXP> References: <030101c3ad34$79ad48d0$110d3ad4@VAHOXP>
next in thread | previous in thread | raw e-mail | index | archive | help
Monday, November 17, 2003, 6:58:56 PM, Vahric wrote: VM> I'm linux admin . Now I'm working to pass my server to FreeBSD VM> .. I'm using iptable on Linux box . on FreeBSD which firewall do you VM> advise ?! VM> I can't find any documents or How-to about ip-fw .. Do you have ?! Didn't want to answer in the first place, but after that other reply here come your options: 1) IPFW (don't like it personally) 2) IPFILTER (a bit dated but with quite a few FAQs around) 3) PF: security/pf (from ports. The OpenBSD FAQ is a good starting point to learn about it's capabilities: http://www.openbsd.org/faq/pf/index.html) For case 2) & 3) you'll need "option PFIL_HOOKS" in your kernel, which is - sadly enough - not (yet) in GENERIC. Case 1) can be activated by setting some values in rc.conf(5) with a GENERIC install. My suggestion is to read through sample configuration (somewhere in usr/share) and choose the program that you understand - which has a look & feel like iptables (which I didn't use for quite some time). If you don't want to install security/pf - it's like a new version of ipfilter in regards to the syntax, but has many additional features. -- Best regards, Max mailto:max@love2party.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?671461625.20031118142929>