On Wed, Aug 03, 2005 at 08:20:42AM -0500, Harry Putnam wrote > These machines will also be internet connected and there for will need > some onboard protection beyond my gateway/firewall. > > I want to find a packet filter like iptables for use on windows. That > is, a text based/editable driven packet filter with most or all the > capabilities of iptables. > > If it is possible to run iptable from cygwin then I'd prefer that > approach. Anyone have pointers/urls?
Even if you could do it, running iptables under cygwin is *NOT* what you want. Cygwin is a *PROGRAM* running under Windows. Windows will get the packets before iptables-under-cygwin-under-Windows does. You need to get hardware between the internet and the Windows machines (i.e. a "hardware firewall"). Try a cheap NATing router. Many broadband modems now include a NATing router. If you want, you can try setting up a linux machine as a firewall-cum-NATing-router. That'll be where iptables shines. -- Walter Dnes <[EMAIL PROTECTED]> My musings on technology and security at http://tech_sec.blog.ca -- [email protected] mailing list
