From owner-freebsd-chat@FreeBSD.ORG Wed Mar 26 16:42:29 2008 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A1BFA106566B for ; Wed, 26 Mar 2008 16:42:29 +0000 (UTC) (envelope-from mh@kernel32.de) Received: from crivens.kernel32.de (crivens.terrorteam.de [81.169.171.191]) by mx1.freebsd.org (Postfix) with ESMTP id 0F6998FC1F for ; Wed, 26 Mar 2008 16:42:23 +0000 (UTC) (envelope-from mh@kernel32.de) Received: from www.terrorteam.de (localhost [127.0.0.1]) by crivens.kernel32.de (Postfix) with ESMTP id D2768B0290; Wed, 26 Mar 2008 17:42:21 +0100 (CET) MIME-Version: 1.0 Date: Wed, 26 Mar 2008 17:42:21 +0100 From: Marian Hettwer To: Passive PROFITS In-Reply-To: <431299.70936.qm@web35603.mail.mud.yahoo.com> References: <431299.70936.qm@web35603.mail.mud.yahoo.com> Message-ID: X-Sender: mh@kernel32.de User-Agent: RoundCube Webmail/0.1-rc2 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 8bit Cc: freebsd-chat@freebsd.org Subject: Re: Newbie Question - about newbie user support X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Mar 2008 16:42:29 -0000 Hi there, On Wed, 26 Mar 2008 09:19:55 -0700 (PDT), Passive PROFITS wrote: > > FWIW, I am only experienced with putting together > firewalls in Ubuntu using a GUI (Firestarter). I do > not seem to have come across problems using that combo > (IPtables? + Firestarter GUI). > I'm actually not aware wether there is a gui to plug together a firewall ruleset based on pf(4). That said, I suggest to use pf as the packet filter of choice. It's a great one. Get a first impression about pf(4) by reading the handbook (http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-pf.html) or by reading man pfctl. As a newbie, you should start with the handbook :) Obviously you should have an idea what a packet filter (buzzword is firewall) does. A good understanding on how tcp and networking works is preferred for a good configuration. Another way of just having a FreeBSD + pf based firewall would be using pfsense (http://www.pfsense.org/) which is in my understanding a FreeBSD live CD with a nice webfrontend to configure your router/firewall. It really depends on what you want to do... wanna learn how to setup a packet filter in a unix environment? Go with FreeBSD. Wanna have a nearly out of the box firewall, go with pfsense. I'd prefer the FreeBSD way, because it's always good to understand what the heck is going on under the hood :) Anyway, welcome on board and happy experimenting. regards, Marian