After a week of successfully setting up an OpenBSD router connecting three subnets, I got sick of the complexity of configuring the Linux firewall I have at home.
So I have ordered a Soekris net4801. It is a device based upon an older processor design, but you really don't need much in the way of power to handle the bandwidth given to you by most American Internet Service Providers in NYC. (I'm looking at you, Time Warner Cable of NYC).
I'm hoping to drop OpenBSD 4.0 on it when it arrives, and transition the linux machine to the apartment backup server.
OpenBSD's pf may not be as easy to setup as a point and click firewall based off of a web GUI, but the configuration is A flat plain text file, which is pretty easy to read and modify, and backup for that matter.
Compare that to the four or five files used by shorewall or the many other Linux firewall programs. I did try to get an old port of OpenBSD's pf to linux working, to no avail. Somebody should really get that working.
Not me.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment