Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Best IP configuration for OpenBSD firewall/router

From: chort <chort () amaunetsgothique com>
Date: 18 Aug 2003 10:45:03 -0700
On Mon, 2003-08-18 at 09:24, Edward Rustin wrote:


I'm also going to assume that you're going to be using some sort of
iptables setup on your gateway so that it can perform some firewalling
functions as well. So if you've got iptables set up with the appropriate
restrictions on incoming traffic then your should be fine (for certain
values of fine which include things such as making sure you're secure and
patching your system when it needs it...)



Just FYI iptables is the Linux kernel Netfilter.  OpenBSD uses pf for
packet filtering.

To the original poster, try searching Google for sample pf.conf scripts.

By the way, I agree with the direction you're taking to use OpenBSD for
your gateway.  I know many people recommend Linux to build a gateway,
but many Linux distributions are getting bloated now and the kernel
itself has had a few problems.  Since OpenBSD is a distribution that
does exhaustive code review and is very minimal by default, and it has
strong cryptography built in, I would recommend OBSD rather than Linux.

-- 
Brian Keefer


---------------------------------------------------------------------------
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: