Terry Lambert wrote: > Julian Stacey wrote: > > Hi all, > > Any reccomendations what to install (or avoid) on my firewall, > > from 4.4 /usr/ports/ftp/ to be a proxy ftpd server ? > > man libalias > > Then install natd.
I don't believe that's the solution I'm looking for. I may be wrong, or things may have changed, but when I built my firewall a few years back I was under the strong impression that NAT was a poor man's cheap & dirty insecure replacement for a proper firewall ? I don't want to secure all my internal hosts, I just want the gate to be secure. I went to the effort of doing the thing right, building all the ipfw rules, getting internal & external named roughly right, getting sendmails on gate & internals to forward (OK, incoming is OK, but I admit outgoing is not yet right), getting apache reconfig'd to support proxying (it didnt used to, might now by default, can't remember), ftp proxy is about the last thing. I'm not be convinced it'd be worth tossing all that work & putting in a NATD security loophole ? I suppose folks on [EMAIL PROTECTED] might know more about ipfw + proxies V. NAT, but I wasnt really asking to discuss that, I was asking for reccomendations on proxying ftpd's. Julian J.Stacey Munich Unix (FreeBSD, Linux etc) Independent Consultant Reduce costs to secure jobs: Use free software: http://bim.bsn.com/~jhs/free/ Ihr Rauchen = mein allergischer Kopfschmerz ! Schnupftabak probieren ! To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
