freebsd firewallS

Erik Norgaard norgaard at locolomo.org
Mon Feb 27 01:52:25 PST 2006


Pol Hallen wrote:
> Hi all,
> 
> i'd like build a rules firewall 4 my machine on the internet and my lan.
> 
> I see: IPFW, PF, IPF.
> 
> I have a main server on the internet and several clients.
> 
> Which firewall package i should use?(study)
> 
> I known iptables (4 linux) and i wrote a rules for it, but i prefer use a 
> native freebsd firewall :-)
> 
> Anyone can i suggest me? Thanks very much :-)

ipfw is the native firewall. ipf is simple and historically precedes pf.
pf is ported from OpenBSD and leaves nothing behind in terms of security 
controls.

I don't know ipfw. If you expect a simple rule set, then ipf may be the 
easy solution. Otherwise I would go for pf. pf took some syntax from ipf 
so with some changes you can easily shift to pf later, if you don't use 
groups no changes should be needed.

Cheers, Erik
-- 
Ph: +34.666334818                                  web: www.locolomo.org
S/MIME Certificate: www.daemonsecurity.com/ca/8D03551FFCE04F06.crt
Subject ID:  9E:AA:18:E6:94:7A:91:44:0A:E4:DD:87:73:7F:4E:82:E7:08:9C:72
Fingerprint: 5B:D5:1E:3E:47:E7:EC:1C:4C:C8:3A:19:CC:AE:14:F5:DF:18:0F:B9


More information about the freebsd-questions mailing list