Firewall OS choice

To: netbsd-users%NetBSD.org@localhost
Subject: Firewall OS choice
From: "Michael T. Davis" <DAVISM%ecr6.ohio-state.edu@localhost>
Date: Sat, 17 Jul 2010 19:19:22 -0400 (EDT)

        We have an ancient firewall installed in one area running OpenBSD 2.8
and IPFilter v3.3.18.  It's hardware is configured as an "appliance," so
updating the software isn't all that straightforward (to put it nicely).  I am
contemplating upgrading the hardware, and switching to a BSD flavor that
continues to provide built-in support for IPFilter.  Besides NetBSD, I'm also
considering FreeBSD.  I realize the responses here will be somewhat biased
(;-), but is NetBSD a good choice for this application, esp. compared to
FreeBSD (or vice versa)?

        On a related note, the support for IPFilter in NetBSD 5.0.2 doesn't
seem to provide a mechanism for specifying an alternate configuration file;
it's hardcoded to use /etc/ipf.conf and/or /etc/ipf6.conf.  With the ancient
IPFilter build in the aforementioned environment, there was native support
for specifying a different file.  I have modified /etc/rc.d/ipfilter and
/etc/rc.d/ipnat in NetBSD 5.0.2 to provide for specifying different
configuration files.  Where is the best place to post my diffs and allow
others to evaluate them?

Thanks,
Mike

Follow-Ups:
- Re: Firewall OS choice
  - From: matthew sporleder
- Re: Firewall OS choice
  - From: David Lord

Prev by Date: Fail to suspend to ram after upgrade to 5.1 RC3
Next by Date: Re: Firewall OS choice
Previous by Thread: Fail to suspend to ram after upgrade to 5.1 RC3
Next by Thread: Re: Firewall OS choice
Indexes:

Home | Main Index | Thread Index | Old Index