Full Disclosure mailing list archives

Re: Linux firewall

From: "Michele Chubirka" <chubirka () bellatlantic net>
Date: Thu, 19 Jun 2003 00:01:59 -0400

I've been using IPFilter on Solaris for the last two years or so. Had to
hack the code to increase the size of the state table for busy systems (the
default it pretty small as I remember), but it works great on all our
perimeter systems. Also have known people who use it as the firewall for
medium-size corporate networks. I don't know if you can do that with
IPtables.

----- Original Message -----
From: "Denis Dimick" <denis () dimick net>
To: "Gabe Arnold" <f0x () squirrelsoup net>
Cc: "Spencer, Gary TRI-S INC" <spencerg () dtc army mil>;
<full-disclosure () lists netsys com>
Sent: Wednesday, June 18, 2003 10:44 PM
Subject: Re: [Full-disclosure] Linux firewall


Dont know about BSD.. But I would use Linux.. This is what I use everyday
for the past 5 years.. Have yet to have anyone get thru.. Even the morons
at EEye have tried..

On Wed, 18 Jun 2003, Gabe Arnold wrote:

I would suggest you use an OpenBSD 3.3 setup with the native PF
(Packet Filter)package which is based on the 'BSD IPF package.
It's quite nice, easy to use, and very secure.  I'd check out
www.openbsd.org and www.openbsd.org/faq/pf/ for a good overview of the
PF package and how to use it.

--Gabe


* Spencer, Gary  TRI-S INC (spencerg () dtc army mil) wrote:



Hello everyone. I have been following the discussions for a few months

now

and enjoy the technical information that everyone has to share. What

would

your recommendations be for a Linux firewall? And would you use a

50,000

Cisco firewall instead??

Thanks,

Gary.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Linux firewall Spencer, Gary TRI-S INC (Jun 18)
- Re: Linux firewall Gabe Arnold (Jun 18)
  - Re: Linux firewall David Maxwell (Jun 18)
  - Re: Linux firewall Denis Dimick (Jun 18)
    - Re: Linux firewall Michele Chubirka (Jun 19)
    - RE: Linux firewall Curt Purdy (Jun 19)
    - RE: Linux firewall Denis Dimick (Jun 19)
- Re: Linux firewall Matt (Jun 18)
  - Re: Linux firewall phantasm (Jun 19)
  - Re: Linux firewall Denis Dimick (Jun 19)
- Re: Linux firewall Michael Bergbauer (Jun 19)
  - RE: Linux firewall Curt Purdy (Jun 19)
- <Possible follow-ups>
- Re: Linux firewall Peter E. Johnson (Jun 18)
  - Re: Linux firewall Denis Dimick (Jun 19)