Re: ipfwadm X ipchains

dwelchphoneboy.com
20 Sep 1999 19:10:00 -0700

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Dominick Glavach: "Re: Intrusion Response"
• Previous message: Siglite: "Re: ipfwadm X ipchains"
• In reply to: Jan van Rensburg: "Re: ipfwadm X ipchains"
• Next in thread: William Stearns: "Re: ipfwadm X ipchains"
• Reply: William Stearns: "Re: ipfwadm X ipchains"

On Sun, 19 September 1999, William Stearns wrote:

> The 2.4.x kernel series, hopefully coming out in December, will
> support iptables. iptables has backwards compatibility modules for
> running either ipfwadm or ipchains firewalls. The native implementation
> is extensible; anyone can create new loadable modules that provide either
> new matching fields or new actions when a packet matches. For example,
> there's a module that allows matches on the source mac address.

I'd like to see:

1. Stateful packet filtering for non-MASQed stuff.
2. The ability to log somewhere other than /var/log/messages

But that's just me. Does the 2.4.x kernels have that functionality? Sounds like, if nothing else, it could be coded so it does.

-- PhoneBoy

--
Dameon D. Welch, a.k.a. PhoneBoy (dwelchphoneboy.com)
Check Point FireWall-1 FAQs at http://www.phoneboy.com/fw1/
The views expressed herein are not necessarily those of anyone else.
--
Signup for your free USWEST.mail Email account http://www.uswestmail.net






Next message: Dominick Glavach: "Re: Intrusion Response"
Previous message: Siglite: "Re: ipfwadm X ipchains"
In reply to: Jan van Rensburg: "Re: ipfwadm X ipchains"

Next in thread: William Stearns: "Re: ipfwadm X ipchains"
Reply: William Stearns: "Re: ipfwadm X ipchains"







This archive was generated by hypermail 2.0b3 
on Wed Sep 22 1999 - 06:16:52 CDT