Date: Fri, 27 Jun 2003 11:03:43 -0300 From: "Han Hwei Woo" <hhwoo@argosy.ca> To: =?iso-8859-1?Q?Andreas_Dahl=E9n?= <andreas.dahlen@nbit.sigma.se>, <freebsd-questions@freebsd.org> Subject: Re: Difference between ipf/ipfw and ipnat/natd Message-ID: <00dd01c33cb5$1393db30$0200a8c0@a7n8x> References: <3EFAB6F6.9080306@nbit.sigma.se>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message ----- From: "Andreas Dahlén" <andreas.dahlen@nbit.sigma.se> To: <freebsd-questions@freebsd.org> Sent: Thursday, June 26, 2003 6:03 AM Subject: Difference between ipf/ipfw and ipnat/natd > Hello! > > I'm going to install FreeBSD 4.8 as a firewall/gateway for my homenetwork. > > I've seen that there are two implementations of firewalls in FreeBSD; > ipf and ipfw and fot NAT ipnat/natd. > > As I understand ipf and ipnat works together and ipfw and natd. Is that > correct? Yes, that is correct. > > Which one of them should I use? > Is there some major differences between them? ipfw is a part of FreeBSD, whereas ipfilter is written by Darren Reed and runs not only on FreeBSD, but also on OpenBSD, NetBSD, Solaris (and perhaps others?) if I recall correctly. If you plan to take advantage of the builtin rc scripts to run a predefined set of firewall rules, you'll probably want to stick with ipfw/natd. Also, just fyi ipfw is fairly conventional: the first firewall rule that matches will apply whereas with ipfilter, the last matching rule will apply unless you specify "quick". > > /Andreas > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?00dd01c33cb5$1393db30$0200a8c0>