From owner-freebsd-questions@FreeBSD.ORG  Tue Oct 31 10:56:07 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D177816A4D8
	for <freebsd-questions@freebsd.org>;
	Tue, 31 Oct 2006 10:56:07 +0000 (UTC)
	(envelope-from jfm@shell.reiteration.net)
Received: from smtp-out4.blueyonder.co.uk (smtp-out4.blueyonder.co.uk
	[195.188.213.7])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A4CDF43D4C
	for <freebsd-questions@freebsd.org>;
	Tue, 31 Oct 2006 10:56:06 +0000 (GMT)
	(envelope-from jfm@shell.reiteration.net)
Received: from [172.23.170.144] (helo=anti-virus03-07)
	by smtp-out4.blueyonder.co.uk with smtp (Exim 4.52)
	id 1GerHp-0006pF-7y
	for freebsd-questions@freebsd.org; Tue, 31 Oct 2006 10:56:05 +0000
Received: from [82.34.179.228] (helo=shell.reiteration.net)
	by asmtp-out3.blueyonder.co.uk with esmtp (Exim 4.52)
	id 1GerHn-0003Gq-Vs
	for freebsd-questions@freebsd.org; Tue, 31 Oct 2006 10:56:04 +0000
Received: from localhost.127.in-addr.arpa
	([127.0.0.1] helo=shell.reiteration.net ident=jfm)
	by shell.reiteration.net with esmtp (Exim 4.63 (FreeBSD))
	(envelope-from <jfm@shell.reiteration.net>) id 1GerHo-00062J-3f
	for freebsd-questions@freebsd.org; Tue, 31 Oct 2006 10:56:04 +0000
Received: (from jfm@localhost)
	by shell.reiteration.net (8.13.6/8.13.6/Submit) id k9VAu3Uw023206
	for freebsd-questions@freebsd.org; Tue, 31 Oct 2006 10:56:03 GMT
	(envelope-from jfm)
Date: Tue, 31 Oct 2006 10:56:03 +0000
From: John <lists@reiteration.net>
To: freebsd-questions@freebsd.org
Message-ID: <20061031105603.GA79838@reiteration.net>
References: <20061029031104.46343.qmail@simone.iecc.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20061029031104.46343.qmail@simone.iecc.com>
User-Agent: Mutt/1.4.2.2i
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: jfm@shell.reiteration.net
X-SA-Exim-Scanned: No (on shell.reiteration.net);
	SAEximRunCond expanded to false
Subject: Re: More questions on sr sync driver, packet filters, and altq
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Oct 2006 10:56:07 -0000

On Sun, Oct 29, 2006 at 03:11:04AM -0000, John Levine wrote:
> I am putting together a FreeBSD router to replace a tired old BSD/OS
> one.  My external line is a T1, so I got a Wanic 400 on ebay. I have a
> /24 that is about half full so I don't do NAT and don't expect to need
> to do so.

[snip packet filtering stuff]

I have found openbsd (http://www.openbsd.org) suits this purpose
admirably. It's small, secure by default, and does all the
filtering/bandwidth shaping you could ask for. I use the combo of
openbsd for routers and freebsd for servers/desktop OS.

just my 0.02..
-- 
John - lists @ reiteration . net