Re: linux firewall design
Date: 24 Jan 2005 10:51:15 -0800
Sridhar Natarajan wrote:
> I am bound to design a firewall using iptables(1.2.7a). i have
> compiled the kernel with necessary config parameters.Can any one help
> me with the right resource in linux packet filter design?
See especially the Tutorial section.
> If i would
> design a proxy for my firewall,can it be done any way better than
_You_ won't do _better_ than squid (perhaps different) and the
widepread use of squid insures there is plenty of help setting it
up/maintaining it. It's been quite some time since I've even looked
for/at other proxies. And it's versatility will grow with your needs.
Other apps can/do make use of squid.
> Plz help.
hope this does,
email above disabled
- linux firewall design
... I am bound to design a firewall using iptables. ... compiled the kernel with necessary config parameters.Can any one help ... me with the right resource in linux packet filter design?If i would ...
- Re: engineering management practices and systemd (Re: Installing an Alternative Init?)
... You seems to be in favor of design by comitee, but this doesn't seems to work ... That's not a technical reason. ... Because the blog post say how and why stuff requires to be linked with systemd. ... kernel is not the place for doing interprocess communication at the scale ...
- Re: pppd crashes, was: kde-freebsd
... User PPP is very easy to use, Kernel PPP is not. ... It appears to me that PPP is the more normal way on FreeBSD, whereas, in my own experience Linux, prefer PPPD. ... Over time FreeBSD and Linux drifted apart on this design issue, and it became something of a characteristic of BSD, perhaps that is why Kernel PPP became less well maintained ... Regarding the various comments by Michael Nottebrock, Firstly: The bug you mentioned I have not experienced. ...
- Re: A Layered Kernel: Proposal
... (I can't believe that a kernel programmer will not ... So give us a design. ... layer, the SCSI layer, the network layer, etc.), but it is always ...
- Re: [PROPOSAL/PATCH] Fortuna PRNG in /dev/random
... > in random.c with the Fortuna PRNG designed by Ferguson and Schneier (Practical ... The kernel will break if CONFIG_CRYPTO is false ... don't want crypto, then you don't want secure random numbers." ... design a system that is closer to "true randomness" as possible. ...