From owner-freebsd-newbies@FreeBSD.ORG  Sun Aug 31 12:04:24 2003
Return-Path: <owner-freebsd-newbies@FreeBSD.ORG>
Delivered-To: freebsd-newbies@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id CADB616A4BF
	for <freebsd-newbies@freebsd.org>;
	Sun, 31 Aug 2003 12:04:24 -0700 (PDT)
Received: from altrade.nijmegen.internl.net (altrade.nijmegen.internl.net
	[217.149.192.18])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4900143FBD
	for <freebsd-newbies@freebsd.org>;
	Sun, 31 Aug 2003 12:04:23 -0700 (PDT)
	(envelope-from nico.meijer@zonnet.nl)
Received: from debian by altrade.nijmegen.internl.net
	<freebsd-newbies@freebsd.org>	id h7VJ4LcA012042 (8.12.9/2.04);
	Sun, 31 Aug 2003 21:04:21 +0200 (MET DST)
Date: Sun, 31 Aug 2003 21:04:21 +0200
From: Nico Meijer <nico.meijer@zonnet.nl>
To: freebsd-newbies@freebsd.org
Message-Id: <20030831210421.400b0810.nico.meijer@zonnet.nl>
In-Reply-To: <002001c36fee$246fc470$05191eac@tvwebmaster2>
References: <20030830190107.0A39816A4DD@hub.freebsd.org>
	<002001c36fee$246fc470$05191eac@tvwebmaster2>
X-Mailer: Sylpheed version 0.9.4 (GTK+ 1.2.10; i686-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Subject: Re: iptables
X-BeenThere: freebsd-newbies@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Gathering place for new users <freebsd-newbies.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-newbies>,
	<mailto:freebsd-newbies-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-newbies>
List-Post: <mailto:freebsd-newbies@freebsd.org>
List-Help: <mailto:freebsd-newbies-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-newbies>,
	<mailto:freebsd-newbies-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Aug 2003 19:04:24 -0000

Hi Taulant,

> I just wanted to know if ther's any "firewall" like iptables and
> ipchains(linux) on FreeBSD ??

I've just spent an afternoon fscking with ipfw and natd, so: yes, there
is. :-)
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html
Also look up the man pages of ipfw, natd and firewall.

As an aside, there's ipfilter. You have to rebuild the kernel for either
of them to work, I believe.

Don't ask me which one is better. I'll just quote Ozzy...

For your interest, I've found the documentation on "ipfw + natd + a
default rule of deny" lacking/non-existant, or I haven't been looking in
all the right places (I've got money set on the latter ;-). I've got it
running now and will probably double check with freebsd-questions@ once
I find the time.

HTH and good luck... Nico