Date: Sat, 20 Jan 2001 02:12:19 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: Sean Lutner <sean@rentul.net> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Failover firewalls with ipfw? Message-ID: <20010120021219.G10761@rfx-216-196-73-168.users.reflex> In-Reply-To: <Pine.BSF.4.31.0101191426030.89288-100000@lowrider.lewman.org>; from sean@rentul.net on Fri, Jan 19, 2001 at 02:30:38PM -0500 References: <Pine.BSF.4.31.0101191426030.89288-100000@lowrider.lewman.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jan 19, 2001 at 02:30:38PM -0500, Sean Lutner wrote: > I'm currently doing some research into firewalls, and which one(s) would > be right for my network. I'm considering everything from Checkpoint-1, to > Cisco Pix, to ipchains, to ipfw on FreeBSD. My question is this. Does > anyone out there know of any utilities/code/addons I could use to > implement a failover pair of firewalls using ipfw and fbsd? Ideally I'd > like to do stateful failover, but having two machines always on and a > heartbeat solution might wirk as well. If anyone can offer some pointers, > it would be much appreciated. I've used Stonebeat and Firewall-1, and to be honest, I think you could probably toss together some home-built code and get something with >90% of its functionality in days... If you don't spend a lot of time testing every possible scenario (accurately simulating fizzling hardware is non-trivial) . Heck, if the price is right, I could build something for ya'. ;) -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010120021219.G10761>