While not free, T.Rexx is advertised as an open-source, full-function
firewall for between $49.00 and $149.95. One day I hope to check it
out :)
http://www.opensourcefirewall.com/trex_features_list.html
"Paul D. Robertson" wrote:
>
> It does state on a non-application consistant basis. Since I generally
> deploy it between an application layer gateway and a non-stateful filter
> that's never been a big thing for me. Generally I've only found it useful
> for non-state protocols like DNS anyway, since application layer gateways
> keep better state for everything else I've ever allowed.
So you've got three inline boxes?
untrusted -> appGW -> ipfilter -> pktFilter -> trusted
I've been thinking of a similar configuration out of the desire to
use single-purpose, free software but was having qualms about
daisy-chaining devices in the middle of the communications path.
I assume you've had good luck with reliability and interoperability?
thanks,
gary
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
