[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Linux-Announce Digest #907 (fwd)
I wish I had time to experiment with this one. Anyone tryed it by now?
---------- Forwarded message ----------
Linux-Announce Digest #907, Volume #2 Tue, 3 Feb 98 02:13:20 EST
Contents:
Generic IP Firewalling Chains v1.2.2 (Paul Russell)
----------------------------------------------------------------------------
From: Paul Russell <rusty@paul.tattersalls.com.au>
Subject: Generic IP Firewalling Chains v1.2.2
Date: Mon, 26 Jan 1998 11:56:37 GMT
=====BEGIN PGP SIGNED MESSAGE=====
Hi all,
I have created a patch against the 2.0.33 kernel for Generic
IP Firewalling chains, due to popular demand and a desire for wider
testing. If you're not comfortable compiling a kernel, this probably
won't interest you.
What:
Linux Generic IP Firewalling Chains is a rewrite of the Linux
IPv4 firewalling code (known to users through the `ipfwadm' program).
It consists of a replacement for ipfwadm, and a kernel patch
(currently for 2.1.8x and 2.0.3x).
Why:
o More flexible packet manipulations possible.
o 64-bit packet and byte counters.
o Wildcard interface specifications (eg. all ppp interfaces).
o More complex accounting possible
o Specification of protocols other than TCP, UDP or ICMP.
o Large changes are possible atomically.
o Fragments can be explicitly blocked.
o Filtering on ICMP code as well as type.
o Has inverse rules.
Where:
http://www.adelaide.net.au/~rustcorp/ipfwchains/ipfwchains.html
Rusty.
- --
.sig lost in the mail.