From owner-freebsd-questions Thu Sep 28 11:13:51 2000 Delivered-To: freebsd-questions@freebsd.org Received: from smtp.intop.net (smtp.intop.net [206.156.254.80]) by hub.freebsd.org (Postfix) with ESMTP id C480837B424 for ; Thu, 28 Sep 2000 11:13:44 -0700 (PDT) Received: from charlie (iwkcpe.intop.net [208.149.79.30]) by smtp.intop.net (8.9.3/8.9.3) with ESMTP id NAA16835; Thu, 28 Sep 2000 13:15:03 -0500 Message-Id: <200009281815.NAA16835@smtp.intop.net> From: "Charlie Schloemer" To: , "Dana" Date: Thu, 28 Sep 2000 13:14:47 -0500 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: Firewalls In-reply-to: <043101c02972$d75bc4a0$449aa318@kc.rr.com> X-mailer: Pegasus Mail for Win32 (v3.12a) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 28 Sep 00, at 12:37, Dana wrote: > I can't find any firewalls in the ports directories. What > firewalls are people using with freeBSD? > > Dana This is done in FreeBSD at the kernel level, and must be compiled into your kernel. The FreeBSD Handbook available at www.FreeBSD.org has details on building a custom kernel, as well as adding the kernel options for firewalling. Specifically, you're looking to add an option for IPFIREWALL and support for pseudo- device bpf, which is the Berkeley Packet Filter. Filtering rules are created with the stock /sbin/ipfw. A good reference on ipfw is found firstly in the man pages, but www.FreeBSDDiary.com has some good, real-world examples of ipfw flexing its muscle. -Charlie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message