On Tue, 5 Jun 2001, Brooks Carlson wrote:
> What is the distinction between IPCHAINS, IPTables, IP-Masquerade,
> IPFWADM and NETFILTER?
> Am I correct in saying that the evolution of the Linux firewall was:
> IPFWADM ---> IPCHAINS ---> IPTables?
yep. ipfw/ipfwadm came from BSD and was in 2.0. ipchains was in 2.2.
iptables is in 2.4.
> Where does IP-Masquerade fit into this mix? Under IPCHAINS I have
> rules that I can MASQ
> packets leaving my internet network. Is this the same thing, or is
> IP-Masquerade a separate
> program?
i believe its a module in ipchains, allowing you do have those masq/NAT
rules.
> What about netfilter?
i think thats the official name of the packet filtering code in linux 2.4,
and iptables is basically a set of modules to do stateful packet filtering
(via tables of ip connections).
i hope that is right, and i hope that makes sense,
____________________________
jose nazario [EMAIL PROTECTED]
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
