Date: 08 Mar 2001 09:26:37 -0500 From: Chris Shenton <cshenton@OutBounderInc.com> To: Christopher Schulte <christopher@schulte.org> Cc: Fernando Schapachnik <fschapachnik@vianetworks.com.ar>, Nathan Dorfman <nathan@rtfm.net>, freebsd-security@FreeBSD.ORG Subject: Re: ipfw or ipf? Message-ID: <lfd7bs49r6.fsf@Samizdat.uucom.com> In-Reply-To: Christopher Schulte's message of "Wed, 07 Mar 2001 18:29:10 -0600" References: <20010307190222.A72795@rtfm.net> <5.0.2.1.0.20010307181400.0336ed18@pop.schulte.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 07 Mar 2001 18:29:10 -0600, Christopher Schulte <christopher@schulte.org> said: Christopher> ipfw is beautiful - two nics just hop into promisc mode. Christopher> One connects to the 'internal' network, the other to Christopher> possibly a router or public switch. Then using the Christopher> firewall/shaping rules defined with ipfw traffic is Christopher> transparently passed (or dropped/rejected) from the Christopher> external network to machines on the inside via software Christopher> bridging. Has anyone set up a pair of FreeBSD firewallowing boxes with VRRP (new in ports) to provide fail-over redundancy? I hate being dependent on a single point of failure. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?lfd7bs49r6.fsf>