Firewall Wizards mailing list archives

Re: IPTables QUEUE target equivalency in other firewalls

From: "H. Morrow Long" <morrow.long () yale edu>
Date: Wed, 26 Feb 2003 15:21:30 -0500

Not PIX.  The only semi similar functionality that the
PIX supports outside of the rules in the PIX firewall itself
is the use of outside web cache filtering by URLs
so that companies can subscribe to the URL blacklisting
types of services to block employee browsing of such sites.

H. Morrow Long

Rod Marten wrote:

Netfilter/IPTables supports a target of QUEUE which delivers packets to
a userspace interface where they can be modified,inspected etc.  For
example, the QUEUE target is used by Snort-inline to inspect and
allow/drop packets in realtime.

Do any other firewalls have a similar function?  I am particularly
interested in ipFilter, ipfw, packetfilter, or PIX (I know PIX is highly
unlikely since it is more of a dedicated appliance).

Thanks for the information.

Rod Marten

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards



_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

IPTables QUEUE target equivalency in other firewalls Rod Marten (Feb 26)
- Re: IPTables QUEUE target equivalency in other firewalls H. Morrow Long (Feb 27)
- Re: IPTables QUEUE target equivalency in other firewalls Barney Wolff (Feb 27)
- Re: IPTables QUEUE target equivalency in other firewalls John Dorsey (Feb 27)