From owner-freebsd-mobile@FreeBSD.ORG Wed Sep 21 20:25:11 2005 Return-Path: X-Original-To: freebsd-mobile@freebsd.org Delivered-To: freebsd-mobile@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 864E816A41F; Wed, 21 Sep 2005 20:25:11 +0000 (GMT) (envelope-from marius@communityconnect.com) Received: from host1.communityconnect.com (host1.communityconnect.com [69.10.75.186]) by mx1.FreeBSD.org (Postfix) with ESMTP id 05E8943D4C; Wed, 21 Sep 2005 20:25:10 +0000 (GMT) (envelope-from marius@communityconnect.com) Received: from 192.168.101.26 ([192.168.101.26]) by cci019.hq.communityconnect.com ([192.168.101.238]) with Microsoft Exchange Server HTTP-DAV ; Wed, 21 Sep 2005 20:25:07 +0000 Received: from Daath.hq.communityconnect.com by exchange.hq.communityconnect.com; 21 Sep 2005 16:23:54 -0400 From: "Marius M. Rex" To: kiffin@gish.demon.nl In-Reply-To: <20050921192016.2a961324.lists@yazzy.org> References: <4331AF00.2010900@gish.demon.nl> <20050921192016.2a961324.lists@yazzy.org> Content-Type: text/plain Content-Transfer-Encoding: 7bit Organization: Community Connect Inc. Date: Wed, 21 Sep 2005 16:23:54 -0400 Message-Id: <1127334234.66149.69.camel@Daath.hq.communityconnect.com> Mime-Version: 1.0 X-Mailer: Evolution 2.0.3 FreeBSD GNOME Team Port Cc: freebsd-questions@freebsd.org, freebsd-mobile@freebsd.org Subject: Re: Firewall or not ... X-BeenThere: freebsd-mobile@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: marius@communityconnect.com List-Id: Mobile computing with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 21 Sep 2005 20:25:11 -0000 On Wed, 2005-09-21 at 19:20 +0000, Marcin Jessa wrote: > On Wed, 21 Sep 2005 21:05:36 +0200 > Kiffin Gish wrote: > > > I have installed FreeBSD 5.4 on my Dell Inspiron 8200 using WiFi to > > access the Internet. > > > > My question is what are the pros and cons of running a firewall on my > > client, e.g. is it really necessary. > > > > I mean it's not like I am running Windows and have to bloat it with all > > McAfee, Zonealarm ad infinitum -- or do I? > > > > Thanks alot in advance. > I have a firewall set up on my laptop, as it is company policy. FreeBSD makes it fairly simple to set up and use with the options in /etc/rc.conf, and I rarely have any need to tweak it. I have a fairly lightly modified "CLIENT" type firewall. DHCP is an issue, but a quick script at boot can be used to grab the dynamic IP without too much trouble. Otherwise I really do not have performance issues, connectivity problems, etc, that are worth mentioning. I like to keep a decent eye on security, but to my knowledge I have never run into an occasion where someone has tried to hack me into my laptop through wireless or wired, in a way that would work. I have certainly seen attempted MS-Windows hacks, etc. But nothing that would actually effect FreeBSD. I keep the system fairly up to date, and rarely have any problems with security. (The problems I have had, a firewall would not fix anyway.) I highly suspect that I could stop using the firewall all together and it would not make that much of a difference. So do you need a firewall? Probably not. But since it is really not that hard to set up and manage on FreeBSD, I would advise anyone to use one if they can. -- Marius M. Rex Sr. System Admin. Community Connect Inc. marius@communityconnect.com