From owner-freebsd-ipfw Fri Feb 9 10:45: 2 2001 Delivered-To: freebsd-ipfw@freebsd.org Received: from iguana.aciri.org (iguana.aciri.org [192.150.187.36]) by hub.freebsd.org (Postfix) with ESMTP id 9BEBF37B503 for ; Fri, 9 Feb 2001 10:44:42 -0800 (PST) Received: (from rizzo@localhost) by iguana.aciri.org (8.11.1/8.11.1) id f19Iifg06092; Fri, 9 Feb 2001 10:44:41 -0800 (PST) (envelope-from rizzo) From: Luigi Rizzo Message-Id: <200102091844.f19Iifg06092@iguana.aciri.org> Subject: Re: FreeBSD Application firewall w/o ip forwarding enabled In-Reply-To: <20010209165441.8505.qmail@web4504.mail.yahoo.com> from Jon at "Feb 9, 2001 8:54:41 am" To: cykyc@yahoo.com Date: Fri, 9 Feb 2001 10:44:41 -0800 (PST) Cc: ipfw@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG in freebsd bridging is integrated with ipfw so you can use that (i assume the reason you do not want forwarding is to avoid remapping addrsses ?) see http://www.iet.unipi.it/~luigi/ip_dummynet/ and the bridge and ipfw manpages cheers luigi ----------------------------------+----------------------------------------- Luigi RIZZO, luigi@iet.unipi.it . ACIRI/ICSI (on leave from Univ. di Pisa) http://www.iet.unipi.it/~luigi/ . 1947 Center St, Berkeley CA 94704 Phone: (510) 666 2927 ----------------------------------+----------------------------------------- > > Is anyone aware of, or are there any implementations > of ipfw, IP Filter, fwtk, or other ports/pkgs that > allow for an application-type firewall to exist on > FreeBSD that does not rely on IP forwarding? This > would be used to limit the types of traffic from the > firewall to the DMZ internally. The hope would be a > wide range of application support (FTP, SMTP, DNS, > HTTP, HTTPS, telnet, etc...), but if at least one of > these are supported, then that's a start. > > Thanks, > > Jon > > __________________________________________________ > Do You Yahoo!? > Get personalized email addresses from Yahoo! Mail - only $35 > a year! http://personal.mail.yahoo.com/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message