Return to BSD News archive
Newsgroups: comp.unix.bsd.freebsd.misc Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!nntp.coast.net!news-res.gsl.net!news.gsl.net!EU.net!news.eunet.fi!news.spb.su!arcom.rcom.spb.su!satisfy.kiae.su!glukr!info.elvisti.kiev.ua!office.elvisti.kiev.ua!stesin From: stesin@elvisti.kiev.ua (Andrew V. Stesin) Subject: Re: FreeBSD as Internet firewall X-Newsreader: TIN [version 1.2 PL2+] Sender: news@info.elvisti.kiev.ua (News Subsystem) Organization: ElVisti Information center Message-ID: <Dttp8x.DBz@info.elvisti.kiev.ua> References: <4qphok$2lf@nadine.teleport.com> <4qsipc$90@anorak.coverform.lan> X-Nntp-Posting-Host: office.elvisti.kiev.ua Date: Sun, 30 Jun 1996 17:14:57 GMT Lines: 36 Brian Somers (brian@awfulhak.demon.co.uk) wrote: : David Chamberlain (david.chamberlain@ibm.net) wrote: : : So, now the questions. Does application level proxy software (for outgoing : : FTP, HTTP, etc) exist for FreeBSD and, if so, how reliable is it? I believe I : : can do DNS and SENDMAIL with the existing installed DNS and SENDMAIL daemons. : I don't know about proxying (anyone care to add something?), but named : and sendmail are certainly well capable. There is a port for TIS fwtk in FreeBSD ports collection. But I have an opinion that proxies don't give you anything in case you have an advanced filtering facility, with NAT functionality. So I choose IPfilter 3.0.4 package instead of IPFW (present in FreeBSD) and I'm happy with it, using a single proxy -- Squid WWW cache. : : Also, what kind of hardware would you recommend for a gateway like this. : : Should I use PCI NIC's instead of ISA for performance. What NIC's, either ISA : : or PCI have the most reliable drivers for FreeBSD. (I am not afraid to : : download and compile -stable, i've already done it just for fun). Also, does : : FreeBSD have (or will have) drivers for HP 100VG NIC's? : A PCI NIC with the DEC chipset will be good. The SMC Etherpower is a : 100Mbit card (I believe) - don't know anything about the HP100VG. As for ISA -- look if you have some WD8013-compatible cards. -- With best regards -- Andrew Stesin. +380 (44) 2760188 +380 (44) 2713457 +380 (44) 2713560 "You may delegate authority, but not responsibility." Frank's Management Rule #1.