[MLUG] [ot] Looking for high performance open source firewall
Jean-Francois Theroux
jf at theroux.ca
Thu Dec 18 08:33:33 EST 2008
I'll probably be flamed into oblivion for this, but I still have to say it.
Iptables's a nasty firewall software. It's syntax is so retarded. There I
said it. I don't like it. We should port PF to Linux. :)
On Thu, Dec 18, 2008 at 8:02 AM, David Filion <david at filiontech.com> wrote:
> Nick Sklav wrote:
> > On Wed, 2008-12-17 at 16:46 -0500, David Filion wrote:
> >
> >
> > I will mention it one more time. Since no firewall does what you want
> > and bridging is really all you are looking to do, Then setup shorewall
> > firewall on a linux based system it does bridging. You can also do
> > bridging with PF. The advantage to Freebsd is that the base system is
> > tiny simple to update with freebsd-update and no add-on packages are
> > required. The advantage with the linux version is well you have a good
> > understanding and the learning curve is next to zero for you.
> >
> > _______________________________________________
> > mlug mailing list
> > mlug at listserv.mlug.ca
> >
> https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
> >
>
> We run iptables/shorewall now. iptables doesn't have a synproxy.
>
>
> David
> _______________________________________________
> mlug mailing list
> mlug at listserv.mlug.ca
> https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
>
--
Jean-François Théroux
Linux/network security consultant
http://www.theroux.ca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: /pipermail/mlug-listserv.mlug.ca/attachments/20081218/ab98bf8d/attachment.htm
More information about the mlug
mailing list