|
-
Oct 22nd, 2003, 08:03 AM
#1
Thread Starter
Fanatic Member
FreeBSD - Good firewall?
I've just finished downloading the new FreeBSD release from the trusty linuxiso.org... and wondered if anyone had used a strong firewall with it?
Any ideas?
Ta.  
-
Oct 23rd, 2003, 11:18 AM
#2
Monday Morning Lunatic
*whispers OpenBSD down your ear*
I refuse to tie my hands behind my back and hear somebody say "Bend Over, Boy, Because You Have It Coming To You".
-- Linus Torvalds
-
Oct 24th, 2003, 07:32 AM
#3
Thread Starter
Fanatic Member
Could you repeat that... I didn't quite catch it! 
Why OpenBSD? Why is it better?
-
Oct 26th, 2003, 03:14 PM
#4
Monday Morning Lunatic
Single-file config for all the packet filtering, and scrubbing/seq rewriting to guard against attacks aimed at internal machines, which I've not seen in any other filter yet (some of the hardware ones might have it, though, but you're looking at PIX-level stuff).
And the fact that it's bloody easy to use, I mean:
Code:
external = "rl1"
services = "{ http, ftp, ident, 12345 }"
# Allow incoming services
pass in quick on $external inet proto tcp from any to any port $services flags S/SA keep state
# normal traffic
pass out quick on $external from any to any flags S/SA keep state
# finish block
block in log quick
...and so on  The new version in 3.4 can do passive fingerprinting (i.e. see what OS is connecting to you), and there's been queueing/priority support in since 3.3).
I refuse to tie my hands behind my back and hear somebody say "Bend Over, Boy, Because You Have It Coming To You".
-- Linus Torvalds
-
Oct 26th, 2003, 03:38 PM
#5
Thread Starter
Fanatic Member
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote