nanog mailing list archives

Re: which firewall product?

From: Michael Brown <michael () supermathie net>
Date: Tue, 30 Jul 2013 16:19:34 -0400

In the pfSense UI, you create the physical interface as a GRE tunnel
then assign it to a logical interface against which you can apply the
firewall rules:



The screenshot is a GIF IPv6 he.net tunnel (this is 2.1RC0) but it works
the same way on 2.0.1.

Works great!

M.

On 13-07-30 04:10 PM, Charles N Wyble wrote:

Not sure how bsd handles ipip connections. If it breaks them out as a dedicated interface (like it does for openvpn 
connections) , then rules can be applied and pfsense would be quite useful. The UI is very simple.


-- 
Michael Brown            | The true sysadmin does not adjust his behaviour
Systems Administrator    | to fit the machine.  He adjusts the machine
michael () supermathie net  | until it behaves properly.  With a hammer,
                         | if necessary.  - Brian

Current thread:

which firewall product? William Herrin (Jul 30)
- RE: which firewall product? Warren Bailey (Jul 30)
  - RE: which firewall product? Charles N Wyble (Jul 30)
    - Re: which firewall product? Michael Brown (Jul 30)
    - Re: which firewall product? William Herrin (Jul 30)
    - Re: which firewall product? Blake Dunlap (Jul 30)
    - Re: which firewall product? William Herrin (Jul 30)
    - Re: which firewall product? Blake Dunlap (Jul 30)
    - Re: which firewall product? Kinkaid, Kyle (Jul 30)
    - Re: which firewall product? Owen DeLong (Jul 30)
    - Re: which firewall product? Christopher Morrow (Jul 31)
- Re: which firewall product? Owen DeLong (Jul 30)
- Re: which firewall product? Jimmy Hess (Jul 30)
  - Re: which firewall product? Richard Golodner (Jul 30)