Date: Mon, 26 Feb 2001 07:55:05 +0000 From: Duraid <latif2221@home.com> To: Dan O'Connor <dan@mostgraveconcern.com>, "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: Re: NAT with ipfw? Message-ID: <3A9A0BD9.FE92DCB4@home.com> References: <003601c09fa2$2e6a2340$029b140a@danco>
next in thread | previous in thread | raw e-mail | index | archive | help
im having a problem understanding the following.. and i've noticed it in several designs including yours: if the default policy is to deny every thing then why you firewall is full with deny rulls. shouldn't it just have the allow rulls since everything else is going to be droped by default. other thing i think your firewall is stateless (using establish). if you have made it statefull (using keep-state) i think it would be much smaller. neat site.. in my bookmarks Duraid To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A9A0BD9.FE92DCB4>