From owner-freebsd-current Mon Feb 10 4:46:36 2003 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8C05B37B401 for ; Mon, 10 Feb 2003 04:46:33 -0800 (PST) Received: from mail.tcoip.com.br (erato.tco.net.br [200.220.254.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 228DB43FBF for ; Mon, 10 Feb 2003 04:46:30 -0800 (PST) (envelope-from dcs@tcoip.com.br) Received: from tcoip.com.br ([10.0.2.6]) by mail.tcoip.com.br (8.11.6/8.11.6) with ESMTP id h1ACjee10615; Mon, 10 Feb 2003 10:45:40 -0200 Message-ID: <3E479EF4.4060008@tcoip.com.br> Date: Mon, 10 Feb 2003 10:45:40 -0200 From: "Daniel C. Sobral" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.3a) Gecko/20030206 X-Accept-Language: en-us, en, pt-br, ja MIME-Version: 1.0 To: "Coercitas Temet'Nosce" Cc: "'Don'" , current@FreeBSD.ORG Subject: Re: RE : IPFilter References: <008e01c2d06e$72c1d200$bede1e0a@XG396.local> In-Reply-To: <008e01c2d06e$72c1d200$bede1e0a@XG396.local> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Coercitas Temet'Nosce wrote: > Pardon my poor knowledge about IPFW 2 but if I remember well, IPFW > wasn't a SPI Firewall, which is what I need. Btw, previous Kernel allow= s > us to fine tune its building for IPF and now, it simply gone...was > really wondering where those features are. What, exactly, is a 'SPI' firewall? If you mean stateful firewall, you=20 haven't looking into ipfw for at least five years (making your remark=20 obsolete, not ipfw :). The only thing I couldn't do with the old ipfw was atomic replacement of = rules. With ipfw2 I can do that. ipfw2 is default on 5.0 and can be=20 turned on on 4.7 (options IPFW2 on kernel and WITH_IPFW2, iirc, on=20 make.conf). The '2' is the version, the binary, man pages etc still have = all the same names. >=20 > Is there any web place where I can find stuff about IPFW2 by chance ? >=20 > regards >=20 > -----Message d'origine----- > De : owner-freebsd-current@FreeBSD.ORG > [mailto:owner-freebsd-current@FreeBSD.ORG] De la part de Don > Envoy=E9 : dimanche 9 f=E9vrier 2003 19:47 > =C0 : Coercitas Temet'Nosce > Cc : current@freebsd.org > Objet : Re: TR : IPFilter >=20 >=20 >>Btw, I was looking for some docs on the FreeBSD website and didn't >=20 > found >=20 >>anything interesting, only firewall that FreeBSD seems to support >>nowadays >>is the old IPFW, which is quite obsolete now imo. Why are >=20 > documentation >=20 >>pages not dealing with IPF at all ? is there any reason ? >=20 > Try ipfw2 >=20 > -Don >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-current" in the body of the message --=20 Daniel C. Sobral (8-DCS) Gerencia de Operacoes Divisao de Comunicacao de Dados Coordenacao de Seguranca TCO Fones: 55-61-313-7654/Cel: 55-61-9618-0904 E-mail: Daniel.Capo@tco.net.br Daniel.Sobral@tcoip.com.br dcs@tcoip.com.br Outros: dcs@newsguy.com dcs@freebsd.org capo@notorious.bsdconspiracy.net The past always looks better than it was. It's only pleasant because it isn't here. -- Finley Peter Dunne (Mr. Dooley) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message