[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Linux-Announce Digest #907 (fwd)




I wish I had time to experiment with this one. Anyone tryed it by now?

---------- Forwarded message ----------
Linux-Announce Digest #907, Volume #2             Tue, 3 Feb 98 02:13:20 EST

Contents:
  Generic IP Firewalling Chains v1.2.2 (Paul Russell)

----------------------------------------------------------------------------

From: Paul Russell <rusty@paul.tattersalls.com.au>
Subject: Generic IP Firewalling Chains v1.2.2
Date: Mon, 26 Jan 1998 11:56:37 GMT

=====BEGIN PGP SIGNED MESSAGE=====


Hi all,

        I have created a patch against the 2.0.33 kernel for Generic
IP Firewalling chains, due to popular demand and a desire for wider
testing.  If you're not comfortable compiling a kernel, this probably
won't interest you.

What: 

        Linux Generic IP Firewalling Chains is a rewrite of the Linux
IPv4 firewalling code (known to users through the `ipfwadm' program).
It consists of a replacement for ipfwadm, and a kernel patch
(currently for 2.1.8x and 2.0.3x).

Why: 
        o More flexible packet manipulations possible.
        o 64-bit packet and byte counters.
        o Wildcard interface specifications (eg. all ppp interfaces).
        o More complex accounting possible
        o Specification of protocols other than TCP, UDP or ICMP.
        o Large changes are possible atomically.
        o Fragments can be explicitly blocked.
        o Filtering on ICMP code as well as type.
        o Has inverse rules.

Where:
        http://www.adelaide.net.au/~rustcorp/ipfwchains/ipfwchains.html

Rusty.
- --
 .sig lost in the mail.