Re: ipchains & iptables together???
From: Rodrigo Barbosa (rodrigob@bh.conectiva.com.br)Date: 01/04/02
- Previous message: security.alert: "Re: Is there any free replacement for zone alarm ?"
- In reply to: Octavio / Super: "RE: ipchains & iptables together???"
- Next in thread: TD - Sales International Holland B.V.: "Re: ipchains & iptables together???"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 4 Jan 2002 11:32:01 -0200 From: Rodrigo Barbosa <rodrigob@bh.conectiva.com.br> To: security-basics@securityfocus.com
On Wed, Jan 02, 2002 at 10:11:28AM -0800, Octavio / Super wrote:
> Almost everybody answered "no" already. :)
>
> As a firewall, you should definitely go with iptables. As a NAT, it depends on your needs, because there are still a lot of modules for ipchains, and (AFAIK) only the FTP is ported to iptables.
That is not quite right.
IPTABLES use a module called conntrack, which by itself should solve most
of your NAT needed without special tweakies, like ipchains needed.
[]s
-- Rodrigo Barbosa - rodrigob at tisbrasil.com.br TIS - Belo Horizonte, MG, Brazil "Quis custodiet ipsos custodiet?" - http://www.tisbrasil.com.br/
- Previous message: security.alert: "Re: Is there any free replacement for zone alarm ?"
- In reply to: Octavio / Super: "RE: ipchains & iptables together???"
- Next in thread: TD - Sales International Holland B.V.: "Re: ipchains & iptables together???"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
