From owner-freebsd-security Tue Oct 26 14:57:26 1999 Delivered-To: freebsd-security@freebsd.org Received: from barracuda.aquarium.rtci.com (barracuda.aquarium.rtci.com [208.11.247.5]) by hub.freebsd.org (Postfix) with ESMTP id 0718814CC5 for ; Tue, 26 Oct 1999 14:57:22 -0700 (PDT) (envelope-from tstromberg@rtci.com) Received: from rtci.com (chenresig@karma.afterthought.org [208.11.244.6]) by barracuda.aquarium.rtci.com (8.9.3/8.9.3) with ESMTP id RAA07052 for ; Tue, 26 Oct 1999 17:57:23 -0400 (EDT) Message-ID: <3816239E.1D32BD32@rtci.com> Date: Tue, 26 Oct 1999 17:56:47 -0400 From: Thomas Stromberg Organization: Research Triangle Consultants, Inc. X-Mailer: Mozilla 4.7 [en] (X11; I; FreeBSD 4.0-CURRENT i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: ipfilter howto available on the web now! Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org For those of you ipfilter users (and those of you curious why people prefer ipfilter over ipfw), a new HOW-TO has been written for ipfilter by Brenden Conoboy & Erik Fichtner. It is available at http://www.obfuscation.org/ipf/ipf-howto.txt * This HOWTO is still under development, some sections are even empty * Some things it discusses: - Rule processing & precedence - Keeping States (real-states, not just what the packet says) - Returning ICMP & RST packets - Setting up ipnat (Name to Address Translation) - ipmon & ipfstat I found it useful, as we're about to setup a nice dual-PII 400 (not that a firewall takes up much CPU, it just happened to be around) ipfilter/ipnat/socks/squid proxy. -- ====================================================================== thomas r. stromberg smtp://tstromberg@rtci.com assistant is manager / systems guru http://thomas.stromberg.org research triangle commerce, inc. finger://thomas@stromberg.org 'om mani padme hung' pots://1.919.380.9771:3210 ---------------------------------------------------------------------- GPS $GCS d? s: a-- C+++ $UB++++ $US+++ $P++++ L- E- W++ N w- V-- PE-- Y+ tv-- b+++ e h r G D-- $DI++ t+ rbt C B++ xi xw !D ================================================================[eof]= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message