traffic normalizer for ipfw?
Darren Reed
avalon at caligula.anu.edu.au
Thu Feb 19 15:16:02 PST 2004
In some mail from Bruce M Simpson, sie said:
>
> On Thu, Feb 19, 2004 at 01:02:16PM -0800, Dorin H wrote:
> > Is there some way to configure ipfw to do traffic
> > normalizing ("scrubbing", as in ipf for OpenBSD)? Is
> > there any tool to do it for FreeBSD firewalling?
> > I've heard that ipf was ported on current, anything
> > else?
You mean pf, not ipf..
normalizing is over rated as a firewall feature - it's really
something that belongs in IDS software.
> We're looking at bringing pf into the tree.
For what benefit you have to wonder...
> One of the things on my
> unofficial (some would say a work of pure fiction) is to look at
> something for KaZaA filtering on BSD...
which pf won't do (so in that sense, it is pure fiction :)
Darren
More information about the freebsd-security
mailing list