Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Announcements Operating Systems BSD

NetBSD/i386 Firewall 6

DreamerFi writes, "NetBSD/i386 Firewall is a free firewall solution for people with a permanent Internet connection. This includes most users of cable or ADSL services, but also businesses with leased lines. The version that went up this weekend also supports folks who get their IP through DHCP, instead of just fixed IP addresses. The maintainers will now start to look at adding services like Web, mail, etc., just like the IBM Interjet that recently featured on Slashdot, so this is the time to get your feature requests in! "
This discussion has been archived. No new comments can be posted.

NetBSD/i386 Firewall

Comments Filter:
  • by Phexro ( 9814 )
    Could someone with experience with the *BSD NAT implementation(s) post some info - or a link to info about it? I've had good success with the Linux 2.0/2.2 NAT/IPMASQ, and the loadable modules to support NAT-unfriendly protocols are good, but I wonder if there is a better way.

    For example, you must manually specify additional FTP ports to masquerade if you want to access FTP servers on a port other then 21.

    Also, with my DSL setup, I only get one IP, which goes to the Cisco 675 DSL Router. This means that no matter what, I have to use the crappy NAT on the Cisco, which breaks some things. The Linux IPMASQ modules also assume that the IP of the interface the masqueraded packets go out on is the IP they will come back to - not so with the aforementioned setup. So sometimes FTP breaks, and I can't do DCC sends on IRC, etc.

    Of course, the real answer is a real external IP for at least one of my Linux boxes, but USWest (my DSL provider) does not give static IPs to home users, only to business customers. And business accounts are around $100/mo - way more than I want to be paying for a net connetion.
  • Reminds me of PicoBSD [freebsd.org] which is bassed off of FreeBSD [freebsd.org].
  • http://www.openbsd.org/faq/faq6.html#6.3

    check that out.
  • AFAIK all three BSDs use Darren Reed's IPfilter.
    Some Links:

    * IP Filter Based Firewalls HOWTO
    -> http://www.obfuscation.org/ipf/ipf-howto.txt
    * IPfilter
    -> http://coombs.anu.edu.au/ipfilter/

    - Hubert

Reality must take precedence over public relations, for Mother Nature cannot be fooled. -- R.P. Feynman

Working...