Full Disclosure mailing list archives
Re: OSS passive firewall
From: Ron DuFresne <dufresne () winternet com>
Date: Thu, 10 Apr 2003 11:33:43 -0500 (CDT)
a firewall sitting as a network bridge, correct? Not all that new, and talked of a number of times in the various lists. The documentation might be a good thing<TM> though I'm suspecting that also might have already been done... Thanks, Ron DuFresne On Thu, 10 Apr 2003 f0x () squirrelsoup net wrote:
About an OSS passive packet monitoring thing. I know openbsd can do direct interface to interface packet forwarding, and you can add a bunch of ip-chains ish stuff to this to make a completely invisible yet quite functional firewall. A very good description of what exactly I mean by this and how to go about doing it can be found here: http://www.openlysecure.org/openbsd/how-to/invisible_firewall.html It's pretty interesting a terribly secure (terribly in a good way :-p). Gabe Arnold www.squirrelsoup.net _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart ***testing, only testing, and damn good at it too!*** OK, so you're a Ph.D. Just don't touch anything. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- OSS passive firewall f0x (Apr 10)
- Re: OSS passive firewall Ron DuFresne (Apr 10)