From owner-freebsd-security Sat Jan 20 7:51:25 2001 Delivered-To: freebsd-security@freebsd.org Received: from k2.jozsef.kando.hu (k2.jozsef.kando.hu [193.224.40.3]) by hub.freebsd.org (Postfix) with SMTP id F336C37B402 for ; Sat, 20 Jan 2001 07:51:07 -0800 (PST) Received: (qmail 17537 invoked by uid 1000); 20 Jan 2001 15:51:00 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 20 Jan 2001 15:51:00 -0000 Date: Sat, 20 Jan 2001 16:51:00 +0100 (CET) From: Attila Nagy X-X-Sender: To: Sean Lutner Cc: Subject: Re: Failover firewalls with ipfw? In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello, > I'm currently doing some research into firewalls, and which one(s) > would be right for my network. I'm considering everything from > Checkpoint-1, to Cisco Pix, to ipchains, to ipfw on FreeBSD. My > question is this. Does anyone out there know of any > utilities/code/addons I could use to implement a failover pair of > firewalls using ipfw and fbsd? Ideally I'd like to do stateful > failover, but having two machines always on and a heartbeat solution > might wirk as well. If anyone can offer some pointers, it would be > much appreciated. Take a look at soon-to-be released IPF 4.0 which will has such capabilities as far as I know. See http://false.net/ipfilter for the mailing list archive. -------------------------------------------------------------------------- Attila Nagy e-mail: Attila.Nagy@fsn.hu Budapest Polytechnic (BMF.HU) @work: +361 210 1415 (194) H-1084 Budapest, Tavaszmezo u. 15-17. cell.: +3630 306 6758 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message