ipfw and statefull rules
Olivier Nicole
on at cs.ait.ac.th
Thu May 29 21:26:22 PDT 2003
> For the max in firewall
> protection you should use IPFILTER/IPNAT the other Firewall that is
> included with FBSD. IPFW2 is over bloated with functions which are
> so special purpose that no one uses. I know the FBSD manual kind of
> infers that ipfw is the preferred firewall but it really is not,
> those in the know use IPFILTER/IPNAT because it is so much easier to
> get stateful protection for your lan machines.
OK, I have been a good boy, read the ipf documentation, until I found
out that FreeBSD+ipf+bridge does not work.
So...
Olivier
More information about the freebsd-questions
mailing list