From owner-freebsd-questions@FreeBSD.ORG Thu Dec 4 21:38:16 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7A9C316A4CE for ; Thu, 4 Dec 2003 21:38:16 -0800 (PST) Received: from turkey.mail.pas.earthlink.net (turkey.mail.pas.earthlink.net [207.217.120.126]) by mx1.FreeBSD.org (Postfix) with ESMTP id D29E243F75 for ; Thu, 4 Dec 2003 21:38:15 -0800 (PST) (envelope-from mailinglistseg@earthlink.net) Received: from cpe-24-221-117-152.az.sprintbbd.net ([24.221.117.152] helo=hades) by turkey.mail.pas.earthlink.net with esmtp (Exim 3.33 #1) id 1AS8fP-0002P6-00 for freebsd-questions@freebsd.org; Thu, 04 Dec 2003 21:38:15 -0800 From: Emmanuel Gravel To: freebsd-questions@freebsd.org Content-Type: text/plain Message-Id: <1070602696.3909.9.camel@hades> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.5 Date: Thu, 04 Dec 2003 22:38:16 -0700 Content-Transfer-Encoding: 7bit Subject: What exactly is ipfilter? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Dec 2003 05:38:16 -0000 I'm looking through rc.conf and the kernel config file for FreeBSD 4.9 (recently downloaded it, my last upgrade was 4.5 so I was way behind, and this is a new install because my old firewall died). I'm used to using ipfw and natd for my firewall, but now I'm seeing ipfilter, ipnat and ipmon. I've done a google search on all of www.freebsd.org for ipfilter, but it only seems to show up in release notes, and the online handbook doesn't really talk about it. Since I haven't recompiled my new kernel, should I consider this instead of ipfw and natd? What's the difference, exactly? On a related note, I'm not sure what the usefulness of IPDIVERT is either, so I don't know if I should compile it in the kernel or not. Thanks!