[oclug] netfilter firewall
Bart Trojanowski
bart at nexus.carleton.ca
Tue Mar 13 14:45:25 EST 2001
> snip...
>
> So does this mean I won't be using ipchains as a firewall anymore? My old
> firewall I made at www.linux-tools/firewall and is based on the 2.2.X
> kernel. To recap I'm replacing a ipchains firewall with an iptables firewall?
Sorry to say but, that was clear as mud... even the URL didn't work. :)
Let me see if I can guess at what you were trying to say. You don't have
to switch to iptables. You don't have to switch to 2.4.x. You probably
can still run ipfwadm as your firewall. However, if you want to be on the
bleeding edge you may want to get iptables.
If you decide to convert your firewall to 2.4.x then you have a choice of
using iptables or ipchaines. 2.4.x has a backwards compatibility mode (in
iptables) that emulates the ipchains interface. However, if you want to
do some complex NAT rules (other than simple masq) iptables would be the
way to go.
Bart.
--
WebSig: http://www.jukie.net/~bart/sig/
More information about the OCLUG
mailing list