Date: Mon, 07 Oct 2002 21:33:06 +0200 From: Manuel Kasper <mk@neon1.net> To: <freebsd-doc@freebsd.org> Subject: Yet another FreeBSD firewall guide (w/ipfilter) Message-ID: <B9C7AE12.545%mk@neon1.net>
next in thread | raw e-mail | index | archive | help
Hi all, I wrote a little guide that deals with setting up a FreeBSD machine as a firewall with stateful packet filtering, NAT, DMZ (optional) and PPPoE client support (optional) because I couldn't find any guides that told me how to set things up in FreeBSD to get something at least comparable to ready-made commercial firewall boxes without too many kludges here and there. I chose ipfilter/ipnat as the tool of choice over ipfw+natd because I always found the way natd works together with ipfw very confusing (especially if you like stateful filtering), so I switched from ipfw+natd to ipfilter/ipnat and so far I'm much happier with it. In writing the guide (and setting up my own firewall, too), I strived to get the "cleanest", simplest, most obvious and scalable solution. Anyway, the guide is at http://neon1.net/misc/firewall.html It's still a work-in-progress; I intend to add more stuff about securing the FreeBSD system in other ways (disabling unnecessary services etc.). Tell me what you think! Greets, Manuel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?B9C7AE12.545%mk>