From owner-freebsd-questions@FreeBSD.ORG Fri Jun 24 16:31:19 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DC73C16A41C for ; Fri, 24 Jun 2005 16:31:19 +0000 (GMT) (envelope-from martin@orbweavers.co.uk) Received: from mail.orbweavers.co.uk (213-152-38-100.dsl.eclipse.net.uk [213.152.38.100]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7964043D48 for ; Fri, 24 Jun 2005 16:31:18 +0000 (GMT) (envelope-from martin@orbweavers.co.uk) Received: from orker.orbweavers.co.uk (unknown [192.168.16.202]) by mail.orbweavers.co.uk (Postfix) with ESMTP id 3A61AB2CE1 for ; Fri, 24 Jun 2005 17:31:17 +0100 (BST) From: martin@orbweavers.co.uk To: freebsd-questions@freebsd.org Date: Fri, 24 Jun 2005 17:31:13 +0100 User-Agent: KMail/1.7.2 References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200506241731.13651.martin@orbweavers.co.uk> Subject: Re: firewall on FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jun 2005 16:31:20 -0000 On Friday 24 June 2005 15:31, fbsd_user wrote: > Which firewall you select to use should be based on your level of > understanding of how information is moved across the internet. > Ipfilter is best suited for people who are just learning about > firewalling. PF is a little more automated and the rules are very > close to IPF's. > IPFW is for the advanced firewall users who have expert > understanding of the internet. All 3 firewalls support stateful > rules and are available in the 5.4 release. Best advice is start > with Ipfilter and when you find out that you have needs which are > not met by Ipfilter then move over to IPFW. Is this right? I started off using IPFW, and found it no harder or easier than ipfilter, which I am using now. Can't remember the reason I changed to ipfilter, think it might have something to do with being easier to use with ipnat, but I am pretty happy with it. Is there anything that ipfw does better than ipfilter to make it preferable? > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Khanh Cao > Van > Sent: Friday, June 24, 2005 9:33 AM > To: freebsd-questions > Subject: firewall on freebsd > > > I'm going to learn about the freebsd firewall . In the handbook list > some of them and I could not find out what is the best . So I > decided > to post here hoping to gain some of your opinion and experience . > I would like to know what firewall was the most wanted ? I have used > Linux several months and IP tables was a good statefull firewall . > What about in freeBSD ? > > Thank for reading :) > -- > ---------------------------------- > Cao Van Khanh > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"