Re: fw on linux and freebsd

To: socrel@gmx.net, debian-firewall@lists.debian.org
Subject: Re: fw on linux and freebsd
From: Mike Mestnik <cheako911@yahoo.com>
Date: Wed, 30 Jun 2004 18:30:22 -0700 (PDT)
Message-id: <[🔎] 20040701013022.91962.qmail@web11906.mail.yahoo.com>
In-reply-to: <[🔎] 20040630_174559_070248.socrel@gmx.net>

--- socrel@gmx.net wrote:
> 
> Looking for considered comparisions of firewalling on Linux and FreeBSD.
> 
FreeBSD let's you respond to 'blocked' ports in ""exactly"" the same way
'closed' ports are.  Linux has higher moral standerdes as in the
developers refuse to add this feature on there religious grounds.

FreeBSD's config files are 'optimized' according to the rules of there
relegioun.  Which makes them cryptic(backwards) for the rest of us. 
However CT is not automatic, but the accepting of related/established
packet's is manditory.

> I am especially interested in learning about ease of connection tracking
> 
There is no *inner workings* documantation on ether side and it's
difficult to see how each **workes** for a comparasen.

>   and of getting packets into user space for analysis via scripts.
I think Linux takes this one -hands down-.  However I would allways
caution, buffer overflows and other security riskes are allways involved.

Sticking to the OS's own book keeping should be your goal.  In Linux this
means text files in sudo FS.  In FreeBSD AFAIK this means piping the
output of system apps.

> 
> Thanks
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> 
> 

__________________________________
Do you Yahoo!?
New and Improved Yahoo! Mail - Send 10MB messages!
http://promotions.yahoo.com/new_mail

Reply to:

References:
- fw on linux and freebsd
  - From: <socrel@gmx.net>

Prev by Date: fw on linux and freebsd
Previous by thread: fw on linux and freebsd
Index(es):
- Date
- Thread