From owner-freebsd-questions@FreeBSD.ORG  Sat Sep  9 12:23:48 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9A1F116A403
	for <freebsd-questions@freebsd.org>;
	Sat,  9 Sep 2006 12:23:48 +0000 (UTC)
	(envelope-from chris.branch@gmx.de)
Received: from mail.gmx.net (mail.gmx.net [213.165.64.20])
	by mx1.FreeBSD.org (Postfix) with SMTP id 77D3143D4C
	for <freebsd-questions@freebsd.org>;
	Sat,  9 Sep 2006 12:23:47 +0000 (GMT)
	(envelope-from chris.branch@gmx.de)
Received: (qmail invoked by alias); 09 Sep 2006 12:23:46 -0000
Received: from ip-117.net-82-216-243.rev.numericable.fr (EHLO
	kraft.network23.homeunix.org) [82.216.243.117]
	by mail.gmx.net (mp033) with SMTP; 09 Sep 2006 14:23:46 +0200
X-Authenticated: #24323161
Received: from kraft.network23.homeunix.org (localhost [127.0.0.1])
	by kraft.network23.homeunix.org (Postfix) with ESMTP id 3A60AB847
	for <freebsd-questions@freebsd.org>;
	Sat,  9 Sep 2006 14:23:44 +0200 (CEST)
Received: from 192.168.0.2 (SquirrelMail authenticated user christophe)
	by kraft.network23.homeunix.org with HTTP;
	Sat, 9 Sep 2006 14:23:44 +0200 (CEST)
Message-ID: <49770.192.168.0.2.1157804624.squirrel@kraft.network23.homeunix.org>
In-Reply-To: <002001c6d3e1$9107fd00$7001a8c0@khmerserver.net>
References: <002001c6d3e1$9107fd00$7001a8c0@khmerserver.net>
Date: Sat, 9 Sep 2006 14:23:44 +0200 (CEST)
From: "Christophe Branchereau" <chris.branch@gmx.de>
To: freebsd-questions@freebsd.org
User-Agent: SquirrelMail/1.4.8
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 1 (Highest)
Importance: High
X-Y-GMX-Trusted: 0
Subject: Re: ipfilter dedicate firewall
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Sep 2006 12:23:48 -0000


> Dear all,
>
> I have tried to read some documents online and build my own firewall using
> ipfilter enabled in my kernel. but now I want some idea regarding a
> coperate, dedicate firewall for company upto 250 users something. what
> should we do to get those type of firewall system? how to scale for it?
> what options and things we should consider and config with this firewall
> server?
>
> Best regards,
>
> Richard Ben, CIO
> --

Hint: you should consider running a VPN for those who travel and need to
access the (secure) internal network from the (insecure) outside world.

http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html


Regards

-- 
Christophe