Date: Thu, 8 Dec 2016 08:50:46 -0500 From: "James B. Byrne" <byrnejb@harte-lyne.ca> To: "Polytropon" <freebsd@edvax.de> Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD Firewalls Message-ID: <eeb6a2b5b0acf5dadd7974965419ae1d.squirrel@webmail.harte-lyne.ca> In-Reply-To: <20161207231046.504c2a61.freebsd@edvax.de> References: <5bed7716cd0c9f56e7fe73e86d0cde45.squirrel@webmail.harte-lyne.ca> <alpine.BSF.2.20.1612071450340.5616@wonkity.com> <20161207231046.504c2a61.freebsd@edvax.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, December 7, 2016 17:10, Polytropon wrote:
> On Wed, 7 Dec 2016 14:55:34 -0700 (MST), Warren Block wrote:
>> Either PF or IPFW, depending on who you ask.
>
> Or depending on _how_ you ask: For simple and "static" concepts,
> IPFW is the typical suggestion, while more advanced and extended
> firewalls setups lead to PF as a recommendation. But of course
> it's not that one of the firewalls cannot be used for the other
> "contradicting" purpose... :-)
>
Thanks. For the immediate case simple and static is probably the best
description. Overall however we intend to replace Linux with FreeBSD
on all our hosts; real and virtual. That includes our gateway routers,
which are single purposed x86_64 1u units. Thus learning PF seems the
most economical choice.
No doubt I will have questions on PF. But for the moment the book
seems straight-forward enough.
Sincerely,
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:ByrneJB@Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?eeb6a2b5b0acf5dadd7974965419ae1d.squirrel>