From owner-freebsd-questions  Wed May 23  8:39:30 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mout0.freenet.de (mout0.freenet.de [194.97.50.131])
	by hub.freebsd.org (Postfix) with ESMTP id EFA4037B446
	for <freebsd-questions@freebsd.org>; Wed, 23 May 2001 08:39:21 -0700 (PDT)
	(envelope-from rabat@web.de)
Received: from [194.97.50.136] (helo=mx3.freenet.de)
	by mout0.freenet.de with esmtp (Exim 3.22 #1)
	id 152ajI-0006GS-00
	for freebsd-questions@freebsd.org; Wed, 23 May 2001 17:39:20 +0200
Received: from b3ea8.pppool.de ([213.7.62.168] helo=spotteswoode.yi.org)
	by mx3.freenet.de with asmtp (ID inode@freenet.de) (Exim 3.22 #1)
	id 152ajH-0006vC-00
	for freebsd-questions@freebsd.org; Wed, 23 May 2001 17:39:20 +0200
Received: (qmail 1949 invoked by uid 0); 23 May 2001 15:39:40 -0000
Date: Wed, 23 May 2001 17:39:40 +0200
From: clemensF <rabat@web.de>
To: freebsd-questions <freebsd-questions@freebsd.org>
Subject: ipfilter in kernel versions > 3 ?
Message-ID: <20010523173940.A1704@spotteswoode.yi.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Organization: private
X-PGP-ID: 0x214190AF
X-Stamper-To: post@stamper.itconsult.co.uk
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

besides ipfw(8) there is another popular firewall package:  ipfilter
(ip-fil3.4.17.tar.gz) by darren reed.  like ipfirewall(4), it contains
utilities for defining rule sets and administration.  it's documentation
states it to be part of freebsd systems versioned 3 and up, but i found no
trace of it in my freebsd 4.0 STABLE.
ipfilter is quite portable and the source distribution contains kernel
source-patches for a dozen systems.

[]  is ipfilter just another interface to the kernels ip functions which
can be used independently without interference?  how do the systems
interact?

[]  after applying ipfilter's patches to the kernel sources i lost my
backups, which is unfortunate, because they were already patched with
several sets, one of which was hand-crafted and can't be restored, so
installing them from the cd-roms won't do.
can i get the kernel sources for, say, freebsd 4.3, make a new kernel and
run the 4.0 user-programs with it, i.e. would this be binary compatible?

[]  where can i find a set of kernel sources for freebsd-current?

[]  where can i find good and detailed HOWTO's, FAQ's and usage
documentations?  i need online-info about rules, the administration of
firewalled systems and experience reports for all sizes and scales.

clemens fischer

ps:  please Cc: me as i'm not a list member.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message