Rework of firewall chapter start
Nik Clayton
nik at FreeBSD.org
Thu Dec 16 11:50:53 UTC 2004
On Wed, Dec 15, 2004 at 08:10:25PM +0100, Simon L. Nielsen wrote:
> I started to reword and improve the first two sections of the firewall
> chapter. Comments (both to the direction of the changes and the
> actual patch)?
OK, this is nit-picking, but...
I've always understood a firewall to be a combination of one or more
technologies, implemented in a manner that provides security.
For example, a corporate firewall might consist of a packet filter, a
mail scanning system, and an HTTP proxy.
What the chapter (and the patch) are talking about so far is (just) a
packet filter. Now a packet filter can, on its own, be the only
technology used to implement a firewall. But to my mind the distinction
is still important.
Of course this could just be me being an old fart...
N
--
FreeBSD: The Power to Serve http://www.freebsd.org/ (__)
FreeBSD Documentation Project http://www.freebsd.org/docproj/ \\\'',)
\/ \ ^
--- 15B8 3FFC DDB4 34B0 AA5F 94B7 93A8 0764 2C37 E375 --- .\._/_)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-doc/attachments/20041216/34365976/attachment.sig>
More information about the freebsd-doc
mailing list