LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > *BSD
User Name
Password
*BSD This forum is for the discussion of all BSD variants.
FreeBSD, OpenBSD, NetBSD, etc.

Notices



Reply
 
Search this Thread
Old 02-14-2003, 07:48 AM   #1
gpetrov
LQ Newbie
 
Registered: Feb 2003
Posts: 3

Rep: Reputation: 0
Question What software to setup firewall with FreeBSD 4.7


Hi all,
What I am trying to do is to setup office firewall.
Office is with about 20 win PCs. They have to access
Internet through this firewall.
My question is from what programs consists minimal
FreeBSD setup that will act as firewall, caching proxy
and IP translation.
I have full CD distribution of 4.7 FreeBSD
Box is Compaq Deskpro on 500 Mhz with 128MB RAM
and 8 GB HDD.
TIA
George
 
Old 02-14-2003, 10:03 AM   #2
tpro
Member
 
Registered: Feb 2003
Location: Biggs, CA
Distribution: FreeBSD, Slackware
Posts: 36

Rep: Reputation: 15
Lightbulb

The FreeBSD handbook has a section on Firewalls. This looks like it could be a helpful resource in sending you down the right path.

http://www.freebsd.org/doc/en_US.ISO...firewalls.html

There is also another document on Securing FreeBSD that is helpful in just generally hardening the box. It is the Security How-To and it is found at:

http://people.freebsd.org/~jkb/howto.html

Enjoy!

Tim
 
Old 02-15-2003, 12:57 PM   #3
5amYan
Member
 
Registered: Apr 2002
Location: The District
Distribution: FreeBSD, OBSD maybe Gentoo and Winblech XP
Posts: 291

Rep: Reputation: 30
I assume you will be natting them also?
There are a couple fw options in FBSD.

I am rather partial to IPFilter. You need to compile support for it into the kernel.
It comes with ipfw as part of the base install. Bothare very capable and your preference will lie with the one who's language you best relate too.

Definetly check the handbook. And google, there are a number of sites related to both.
 
Old 02-16-2003, 12:08 PM   #4
gpetrov
LQ Newbie
 
Registered: Feb 2003
Posts: 3

Original Poster
Rep: Reputation: 0
10xs.
I have done some printing and will do some reading.
It seems to me that I will not be secure for some time
since I accuire adecuate experience 8-)))
 
Old 02-23-2003, 11:09 AM   #5
lucifar
LQ Newbie
 
Registered: Feb 2003
Distribution: FreeBSD, OpenBSD, NetBSD, Gentoo, Debian, Slackware, LFS, Redhat, Suse, Mandrake
Posts: 4

Rep: Reputation: 0
Unless there are some other reasons for using FreeBSD for a firewall, I highly suggest using OpenBSD.

This is the configuration I have:

HW:
PPro200 w/32MB RAM
400MB Hard Drive
2x NICs.

SW:
OpenBSD 3.2
pdnsd for caching DNS
rrd for bandwidth graphs
thttpd for serving the bandwidth graphs
some other misc. custom scripts for graph updating and some transparent SSL port forwarding.

This box is able to handle 8-9Mbit easy, which is about all I am able to ever get with my cable modem. It is setup to do NAT with a single external IP.

I was also playing around with some transparent FTP proxing and using a transparent squid for HTTP proxing and filtering.

If you are interested in my pf.conf and other custom scripts, let me know.
 
Old 02-23-2003, 12:05 PM   #6
leed_25
Member
 
Registered: Jul 2002
Location: san francisco
Distribution: freebsd
Posts: 102

Rep: Reputation: 17
,----[ http://www.onlamp.com/pub/a/bsd/2001...SD_Basics.html ]
| Your FreeBSD system comes with two built-in mechanisms for
| inspecting IP packets: ipfw and ipfilter. Both have their
| own peculiar syntax for creating rulesets to determine
| which packets to allow and which packets to discard, so
| I'd like to demonstrate the usage of both. Since you can
| only run one or the other, I'll start with ipfw; once
| we've had a good look at it, I'll switch gears and move on
| to ipfilter....
`----

Dr. Dru Lavigne has a series of three articles over on the
O'Reilly OnLamp site which deal with firewall construction
on a FreeBSD machine. Her articles rock. I find that
they are at just the right level of detail and abstraction
for someone who is just beginning to get in to a subject,
firewalls in this case. Check it out, I doubt that you
will be disappointed.
 
Old 02-25-2003, 11:21 AM   #7
gpetrov
LQ Newbie
 
Registered: Feb 2003
Posts: 3

Original Poster
Rep: Reputation: 0
Smile

Quote:
Originally posted by lucifar
Unless there are some other reasons for using FreeBSD for a firewall, I highly suggest using OpenBSD.

<snip>

If you are interested in my pf.conf and other custom scripts, let me know.
10xs,
I already installed OpenBSD, added GNU mc for easier navigation, no X.

It would be great to have your configuration scripts because it is what I have to do next.

End after this should do some testing before putting it in place

george at ewmi dot orbitel dot bg

linux counter #53166
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ipf freeBSD firewall configuration lord-fu *BSD 11 10-10-2005 09:04 AM
freebsd +firewall +newb mortal *BSD 7 11-08-2004 11:14 AM
freebsd firewall, second nic problem jedimastermopar *BSD 6 10-13-2004 11:42 PM
FreeBSD firewall and dynamic IP-address Mikessu *BSD 3 04-19-2004 11:33 AM
help with client side NFS-firewall setup and server side NIS-firewall setup niverson Linux - Networking 3 02-02-2004 09:52 AM


All times are GMT -5. The time now is 05:20 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration