Date: Fri, 9 Feb 2001 10:44:41 -0800 (PST) From: Luigi Rizzo <rizzo@aciri.org> To: cykyc@yahoo.com Cc: ipfw@FreeBSD.ORG Subject: Re: FreeBSD Application firewall w/o ip forwarding enabled Message-ID: <200102091844.f19Iifg06092@iguana.aciri.org> In-Reply-To: <20010209165441.8505.qmail@web4504.mail.yahoo.com> from Jon at "Feb 9, 2001 8:54:41 am"
next in thread | previous in thread | raw e-mail | index | archive | help
in freebsd bridging is integrated with ipfw so you can use that (i assume the reason you do not want forwarding is to avoid remapping addrsses ?) see http://www.iet.unipi.it/~luigi/ip_dummynet/ and the bridge and ipfw manpages cheers luigi ----------------------------------+----------------------------------------- Luigi RIZZO, luigi@iet.unipi.it . ACIRI/ICSI (on leave from Univ. di Pisa) http://www.iet.unipi.it/~luigi/ . 1947 Center St, Berkeley CA 94704 Phone: (510) 666 2927 ----------------------------------+----------------------------------------- > > Is anyone aware of, or are there any implementations > of ipfw, IP Filter, fwtk, or other ports/pkgs that > allow for an application-type firewall to exist on > FreeBSD that does not rely on IP forwarding? This > would be used to limit the types of traffic from the > firewall to the DMZ internally. The hope would be a > wide range of application support (FTP, SMTP, DNS, > HTTP, HTTPS, telnet, etc...), but if at least one of > these are supported, then that's a start. > > Thanks, > > Jon > > __________________________________________________ > Do You Yahoo!? > Get personalized email addresses from Yahoo! Mail - only $35 > a year! http://personal.mail.yahoo.com/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102091844.f19Iifg06092>