IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / *BSD Forum / There are all the standard ones.
Post #227,729
by folkert
Picture of folkert
10/3/05 11:21:37 AM
Reply
New There are all the standard ones.
/me opens FWBUILDER

At the top, there is a "user" head, click on it and select the standard section.

Things are drag and drop. Make sure your understand NAT with Linux. NAT comes before the routing or allow/deny stage. So the rules in global have to have the NAT addresses for letting stuff in.

I can send you my *.fw I use. Just to show you an existing setup that works. I am a bit less anal than you will be. I'll send it to your TCD account.
--
[link|mailto:greg@gregfolkert.net|greg],
[link|http://www.iwethey.org/ed_curry|REMEMBER ED CURRY!] @ iwethey
[image|http://www.danasoft.com/vipersig.jpg||||]
Post #227,730
by broomberg
10/3/05 11:27:42 AM
Reply
New Thanks
Note: I'm not using NAT for this setup, all addresses to be specified are real.
I think!
     Home made firewall? - (broomberg) - (12) - Oct. 1, 2005, 08:13:50 PM EDT
         the hard way? - (cforde) - (7) - Oct. 2, 2005, 02:25:37 AM EDT
             Depends - (broomberg) - (6) - Oct. 2, 2005, 08:39:22 AM EDT
                 Use FWBUILDER - (folkert) - (5) - Oct. 2, 2005, 09:47:48 PM EDT
                     Interesting - (broomberg) - (4) - Oct. 2, 2005, 10:25:08 PM EDT
                         They are VERY... Exceptionally well done. - (folkert) - (3) - Oct. 3, 2005, 10:39:40 AM EDT
                             Initial glance looks like it want a library of service types - (broomberg) - (2) - Oct. 3, 2005, 10:59:43 AM EDT
                                 There are all the standard ones. - (folkert) - (1) - Oct. 3, 2005, 11:21:37 AM EDT
                                     Thanks - (broomberg) - Oct. 3, 2005, 11:27:42 AM EDT
         first, if they are in the DMZ they can talk to each other? - (boxley) - (3) - Oct. 2, 2005, 11:56:28 AM EDT
             DMZ yes, but need better isolation - (broomberg) - (2) - Oct. 2, 2005, 08:20:11 PM EDT
                 4 port Copper GIG cards are available. - (folkert) - (1) - Oct. 3, 2005, 11:17:38 AM EDT
                     But the intel only allows 2 per box - (broomberg) - Oct. 3, 2005, 11:44:59 AM EDT

Powered by Jerry Garcia!
36 ms