From owner-freebsd-security  Wed Mar 27  7: 8:19 2002
Delivered-To: freebsd-security@freebsd.org
Received: from heresy.dreamflow.nl (heresy.dreamflow.nl [62.58.36.22])
	by hub.freebsd.org (Postfix) with SMTP id 2576F37B400
	for <freebsd-security@freebsd.org>; Wed, 27 Mar 2002 07:08:11 -0800 (PST)
Received: (qmail 76690 invoked by uid 1000); 27 Mar 2002 15:08:31 -0000
Date: Wed, 27 Mar 2002 16:08:31 +0100
From: Bart Matthaei <bart@dreamflow.nl>
To: Josh Snyder <nightrav@netnitco.net>
Cc: freebsd-security@freebsd.org
Subject: Re: NAT / Firewall Question
Message-ID: <20020327160830.A75406@heresy.dreamflow.nl>
References: <00e801c1d59d$2b463e10$4400000a@nitco.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="ZPt4rx8FFjLCG7dd"
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <00e801c1d59d$2b463e10$4400000a@nitco.com>; from nightrav@netnitco.net on Wed, Mar 27, 2002 at 08:39:14AM -0600
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org


--ZPt4rx8FFjLCG7dd
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

> I am going to be setting up a box to do NAT with my Ameritech ADSL (Alcat=
el
> SpeedTouch USB modem) and I was wondering if there was any reason that I
> should use FreeBSD with ipfw/ipfilter ( I don't really know the differenc=
e)
> rather than Linux with iptables?  I fully admit that I haven't really
> researched the two options throughly and I've only setup a very basic one
> rule NAT configuration for my friend.  I was hoping that you all may have
> some insight as to why or if FreeBSD makes a better NAT / Firewall box.

It doesn't. It's just a question of what your used to.
I like the freebsd "feel" a lot better compared to linux.=20
Same thing when it comes down to ipfw/ipf versus iptables.
iptables has the same functionality, but is in my eyes, too complex,
when you compare it to ipfw/ipf.

There used to be a difference in performance between linux and (free)bsd wh=
en it comes
down to firewalling and routing, but with the birth of the 2.4 kernel and i=
ptables,
this difference has vanished.

B.

--=20
Bart Matthaei                 bart@dreamflow.nl=20

Eat drink and be merry, for tomorrow they may make it illegal.

--ZPt4rx8FFjLCG7dd
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8oeBugcc6pR+tCegRAifwAKCOwnXsNctWO/JypUBVhzkVywQScwCfe2v/
WAF1rZxTS/BMpcvFeS+j9gw=
=atKV
-----END PGP SIGNATURE-----

--ZPt4rx8FFjLCG7dd--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message