[LUNI] Firewall question
Steve Pribyl
linux at unliketea.com
Tue Feb 26 20:01:36 CST 2008
In the thread "What distro are you using?" I noticed a few people on the
list are using some version of BSD for their firewall. I have a few
questions about BSD firewalls.
> Why did you choose BSD over Linux?
It is not Linux, why make things easy. NetBSD has an excellent security
reputation.
> Why did you choose the BSD you choose?
Again, NetBSD has an excellent security reputation. This distro is built
around networking.
> What firewall software do you use? I think NetBSD and FreeBSD can use
> pf, ipfw and ipf.
I use pf. Excellent and easy to understand.
Easy to debug using tcpdump -i pflog0 -e ...
I also use carp and agr for redundancy.
I have used ipf and I founding more of a hassle.
On Linux I use iptables to limit access to specific nodes and networks.
> Do you configure the firewall by hand, or use something like FWBuilder?
Always by Hand
As a matter of fact I am building a new personal firewall as I write this.
I think I have used NetBSD for almost 8 years now, or when ever NetBSD 2.0
came out. I have also used 3.0 and am currently using 4.0.
If you need a build sheet let me know.
Steve
More information about the luni
mailing list