FreeBSD Firewalls
Warren Block
wblock at wonkity.com
Fri Dec 9 16:03:47 UTC 2016
On Fri, 9 Dec 2016, David Demelier wrote:
> Either PF or IPFW, depending on who you ask. Or, if you work for Juniper, IPF.
>
> I used IPFW for many years, now have used PF for many years.
>
> Which of them, if any, have FW for dummies like tools/guides?
>
>
> Peter Hansteen has at least one famous book on PF. There are example IPFW firewalls in /etc/rc.firewall, too.
>
>
> IPFW, IPF, PF. Three firewalls in only one system. I hope one day there will be a consensus to keep only one.
IPF was almost removed a while back, but got a reprieve at the last
minute. Personally, I'd rather have a system where the firewalls were
modular and did not have to be in the base. Then we could have only one
in base, which would probably be IPFW, and others could be installed
from ports. (Yes, this is non-trivial.)
More information about the freebsd-questions
mailing list