Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 19 May 2003 13:53:38 +0000
From:      Philip Reynolds <philip.reynolds@rfc-networks.ie>
To:        freebsd-ipfw@freebsd.org
Subject:   Re: content-based firewall
Message-ID:  <20030519135338.GA61796@rfc-networks.ie>
In-Reply-To: <20030519130138.28972.qmail@web12703.mail.yahoo.com>
References:  <20030519130138.28972.qmail@web12703.mail.yahoo.com>

next in thread | previous in thread | raw e-mail | index | archive | help
dmitry surovtsev <dsurovtsev@yahoo.com> 18 lines of wisdom included:
> Is there any content-based firewall for FreeBSD, i.e.
> firewall with capability to analize the packet content
> (at application level) as it does CheckPoint and
> Cisco's PIX? Maybe SNORT?

I wrote a small application filter, for filtering application data
to/from SMTP servers using ipfw's divert socket (actually, I used
tee, so only a copy of the packet is sent to the divert socket).

What kind of complexity do you need?

Regards,
-- 
Philip Reynolds                      | RFC Networks Ltd.
philip.reynolds@rfc-networks.ie      | +353 (0)1 8832063
http://people.rfc-networks.ie/~phil  | www.rfc-networks.ie



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030519135338.GA61796>