From owner-freebsd-questions@FreeBSD.ORG Sun Aug 28 08:38:52 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 795D816A41F for ; Sun, 28 Aug 2005 08:38:52 +0000 (GMT) (envelope-from pavel.jordak@siemens.com) Received: from mxs1.siemens.at (mxs1.siemens.at [194.138.12.131]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7E3D543D46 for ; Sun, 28 Aug 2005 08:38:51 +0000 (GMT) (envelope-from pavel.jordak@siemens.com) Received: from vies1k7x.sie.siemens.at ([158.226.129.83]) by mxs1.siemens.at with ESMTP id j7S8cnAH012923; Sun, 28 Aug 2005 10:38:49 +0200 Received: from smtp.prgpu.anfdata.cz ([158.226.129.98]) by vies1k7x.sie.siemens.at (8.12.11/8.12.1) with ESMTP id j7S8cmwI022876; Sun, 28 Aug 2005 10:38:49 +0200 Received: from gw.anfdata.cz (gw.anfdata.cz [163.242.71.125]) by smtp.prgpu.anfdata.cz (Postfix) with ESMTP id 6FA5F26852; Sun, 28 Aug 2005 10:38:47 +0200 (CEST) Received: from 158.226.252.127 (SquirrelMail authenticated user jordak) by gw.anfdata.cz with HTTP; Sun, 28 Aug 2005 10:48:12 +0200 (CEST) Message-ID: <49421.158.226.252.127.1125218892.squirrel@gw.anfdata.cz> In-Reply-To: <20050826152404.GG660@sentinelchicken.net> References: <430F2F54.4010902@gmail.com> <20050826152404.GG660@sentinelchicken.net> Date: Sun, 28 Aug 2005 10:48:12 +0200 (CEST) From: Pavel =?iso-8859-2?Q?Jord=E1k?= To: freebsd-questions@freebsd.org User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-2 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: derrill@gmail.com Subject: Re: First time gateway/router X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 Aug 2005 08:38:52 -0000 On 26 Srpen 2005, 17:24, Jason Morgan napsal(a): > On Fri, Aug 26, 2005 at 08:03:48AM -0700, Derrill Guilbert wrote: >> Is there a walkthrough or something online to teach me how to make a >> freebsd box into a gateway/firewall? I've not ever run a FreeBSD box >> that wasn't already behind some other kind of firewall, and don't want >> to screw it up. >> > > The Handbook is your friend :) > > Gateway: > > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-routing.html > > Firewalls (I use IPFW, but I hear PF rocks): > > http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html > Hi, friends, my personally experience: I don't think, IPFW is bad - it is very good, mature, strong..., but: I really enjoyed, when the OpenBSD's PF has been integrated into 5.x. I find the PF much simplier for a newbie (like I was too the time, I tried to configure my first firewall on FreeBSD - done with IPFW on 4.x, since then all others with PF on 5.x ;-) The OpenBSD PF documentation at http://openbsd.org/faq/pf/index.html is excellent, gives advices and examplas and fits for FreeBSD as well. Pavel Jordak ANF DATA, Prague.