From owner-freebsd-security Wed Mar 27 7: 8:19 2002 Delivered-To: freebsd-security@freebsd.org Received: from heresy.dreamflow.nl (heresy.dreamflow.nl [62.58.36.22]) by hub.freebsd.org (Postfix) with SMTP id 2576F37B400 for ; Wed, 27 Mar 2002 07:08:11 -0800 (PST) Received: (qmail 76690 invoked by uid 1000); 27 Mar 2002 15:08:31 -0000 Date: Wed, 27 Mar 2002 16:08:31 +0100 From: Bart Matthaei To: Josh Snyder Cc: freebsd-security@freebsd.org Subject: Re: NAT / Firewall Question Message-ID: <20020327160830.A75406@heresy.dreamflow.nl> References: <00e801c1d59d$2b463e10$4400000a@nitco.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="ZPt4rx8FFjLCG7dd" Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <00e801c1d59d$2b463e10$4400000a@nitco.com>; from nightrav@netnitco.net on Wed, Mar 27, 2002 at 08:39:14AM -0600 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --ZPt4rx8FFjLCG7dd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable > I am going to be setting up a box to do NAT with my Ameritech ADSL (Alcat= el > SpeedTouch USB modem) and I was wondering if there was any reason that I > should use FreeBSD with ipfw/ipfilter ( I don't really know the differenc= e) > rather than Linux with iptables? I fully admit that I haven't really > researched the two options throughly and I've only setup a very basic one > rule NAT configuration for my friend. I was hoping that you all may have > some insight as to why or if FreeBSD makes a better NAT / Firewall box. It doesn't. It's just a question of what your used to. I like the freebsd "feel" a lot better compared to linux.=20 Same thing when it comes down to ipfw/ipf versus iptables. iptables has the same functionality, but is in my eyes, too complex, when you compare it to ipfw/ipf. There used to be a difference in performance between linux and (free)bsd wh= en it comes down to firewalling and routing, but with the birth of the 2.4 kernel and i= ptables, this difference has vanished. B. --=20 Bart Matthaei bart@dreamflow.nl=20 Eat drink and be merry, for tomorrow they may make it illegal. --ZPt4rx8FFjLCG7dd Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8oeBugcc6pR+tCegRAifwAKCOwnXsNctWO/JypUBVhzkVywQScwCfe2v/ WAF1rZxTS/BMpcvFeS+j9gw= =atKV -----END PGP SIGNATURE----- --ZPt4rx8FFjLCG7dd-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message