From owner-freebsd-questions@FreeBSD.ORG Wed Feb 11 06:01:43 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C24C116A4CE for ; Wed, 11 Feb 2004 06:01:43 -0800 (PST) Received: from hosea.tallye.com (joel.tallye.com [216.99.199.78]) by mx1.FreeBSD.org (Postfix) with ESMTP id B9B0743D31 for ; Wed, 11 Feb 2004 06:01:34 -0800 (PST) (envelope-from lorenl@alzatex.com) Received: from hosea.tallye.com (hosea.tallye.com [127.0.0.1]) by hosea.tallye.com (8.12.8/8.12.10) with ESMTP id i1BE14bj010216; Wed, 11 Feb 2004 06:01:04 -0800 Received: (from sttng359@localhost) by hosea.tallye.com (8.12.8/8.12.10/Submit) id i1BE0uen010203; Wed, 11 Feb 2004 06:00:56 -0800 X-Authentication-Warning: hosea.tallye.com: sttng359 set sender to lorenl@alzatex.com using -f Date: Wed, 11 Feb 2004 06:00:56 -0800 From: "Loren M. Lang" To: Lowell Gilbert Message-ID: <20040211140056.GC8118@alzatex.com> References: <20040211130356.GA8118@alzatex.com> <44wu6tspdt.fsf@be-well.ilk.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="OBd5C1Lgu00Gd/Tn" Content-Disposition: inline In-Reply-To: <44wu6tspdt.fsf@be-well.ilk.org> User-Agent: Mutt/1.4.1i X-GPG-Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc X-GPG-Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C cc: "Loren M. Lang" cc: FreeBSD Mailing list Subject: Re: FreeBSD has Two Firewalls? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Feb 2004 14:01:43 -0000 --OBd5C1Lgu00Gd/Tn Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Feb 11, 2004 at 08:43:26AM -0500, Lowell Gilbert wrote: > "Loren M. Lang" writes: >=20 > > I'm trying to learn how to configure my firewall on FreeBSD and there > > seems to be quite a few commands related to it. It looks like, though, > > that FreeBSD has two different implentations of firewalls. One uses > > ipfw to configure it and has natd for nat, the other uses ipf and has > > ipmon, ipnat, ipfs for controlling it. Is this true? >=20 > Pretty much. >=20 > There are some more firewall implementations in the ports, as well. It looks like ipfilter is a newer and more improved over ipfw, but I'm not sure. I'm looking for a good firewall with similar functionality to linux's netfilter. Previously I was doing some somewhat sophisticated things like disabling or limiting internet access for certain indivuals depending on the time of day, as well as using connection helpers for ftp, irc, etc. What's the best firewall to use for this? >=20 > > Where are some good references for learning the packet filter on > > FreeBSD? >=20 > The FreeBSD Handbook and the manual are usually plenty. --=20 I sense much NT in you. NT leads to Bluescreen. Bluescreen leads to downtime. Downtime leads to suffering. NT is the path to the darkside. Powerful Unix is. Public Key: ftp://ftp.tallye.com/pub/lorenl_pubkey.asc Fingerprint: B3B9 D669 69C9 09EC 1BCD 835A FAF3 7A46 E4A3 280C =20 --OBd5C1Lgu00Gd/Tn Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQFAKjWY+vN6RuSjKAwRAk89AJsF8t5ypTo9n/Ody3i+TzsrIo1cnwCgklyf uGodAM4KwSYTJh+S96GpRT4= =/F2F -----END PGP SIGNATURE----- --OBd5C1Lgu00Gd/Tn--