pavement

Category:Firewall

From FreeBSDwiki
(Difference between revisions)
Jump to: navigation, search
 
(2 intermediate revisions by one user not shown)
Line 1: Line 1:
A '''firewall''' is a software application that runs on a Freebsd system acting as a gateway to the public internet that examines the traffic wanting to pass through it making  decisions about whether to allow, deny, log, NAT, and/or otherwise fiddle with the traffic on a packet-by-packet basis by consulting a ruleset it's been programmed with.
+
A '''firewall''' is a [[gateway]] device which sits between networks and examines the traffic wanting to pass through it, and makes decisions about whether to allow, deny, log, [[NAT]], and/or otherwise fiddle with that traffic on a packet-by-packet basis by consulting a ruleset it's been programmed with.
  
The main purpose of firewalls is to protect an internal network from malicious traffic inbound from public networks. They can monitor and/or control both inbound and outbound traffic. In particular, in work related environments it can be useful to deny outbound traffic on ports used for non-work-related peer-to-peer file-sharing networks; and to deny and log outbound traffic that is characteristic of malware-related activity.
+
The main purpose of most firewalls is to protect an internal network from malicious traffic inbound from the outside network(s), but they can also be used to monitor and/or control outbound traffic. In particular, in work-related environments it can be useful to deny outbound traffic on ports used for non-work-related peer-to-peer file-sharing networks; and to deny and log outbound traffic that is characteristic of malware-related activity.
  
FreeBSD has three firewall soultions available, they are; [ipfw] (FreeBSD-maintained), [pf] (OpenBSD-originated, ported to FreeBSD), and [ipf] (OS-agnostic, ipfilter ported to FreeBSD).  
+
Under FreeBSD, three kernel firewalls are available; [[ipfw]] (FreeBSD-based), [[pf]] (OpenBSD-originated, ported to FreeBSD), and [[ipf]] (OS-agnostic). [[ipfw]] and [[ipf]] will work as [[modules]] but if you're going to be running them at all, you'll probably want to recompile your kernel for static support -- see [[Firewall, Configuring]], below.
  
 
If you want your article to appear in this category, append <nowiki>[[Category:Firewall]]</nowiki> to its end.
 
If you want your article to appear in this category, append <nowiki>[[Category:Firewall]]</nowiki> to its end.

Latest revision as of 17:06, 25 August 2012

A firewall is a gateway device which sits between networks and examines the traffic wanting to pass through it, and makes decisions about whether to allow, deny, log, NAT, and/or otherwise fiddle with that traffic on a packet-by-packet basis by consulting a ruleset it's been programmed with.

The main purpose of most firewalls is to protect an internal network from malicious traffic inbound from the outside network(s), but they can also be used to monitor and/or control outbound traffic. In particular, in work-related environments it can be useful to deny outbound traffic on ports used for non-work-related peer-to-peer file-sharing networks; and to deny and log outbound traffic that is characteristic of malware-related activity.

Under FreeBSD, three kernel firewalls are available; ipfw (FreeBSD-based), pf (OpenBSD-originated, ported to FreeBSD), and ipf (OS-agnostic). ipfw and ipf will work as modules but if you're going to be running them at all, you'll probably want to recompile your kernel for static support -- see Firewall, Configuring, below.

If you want your article to appear in this category, append [[Category:Firewall]] to its end.

Pages in category "Firewall"

The following 6 pages are in this category, out of 6 total.

Personal tools