Thus spoke George Metz: > Cool. Will try again a little later, as we've got some friends over for > the day. Will keep everyone posted. > George, When you are ready for a firewall, I have a follow-on to Seawall running here. The new firewall is called "Seafall" (so that I don't have to walk a tightrope to keep Seawall Incorporated off of my back) and is redesigned from the ground up to take advantage of the capabilities of netfilter and to avoid many of the problems that I've run into with the old 2.2 firewall. The first version supports a DMZ, Proxy ARP and static NAT with complete control over the traffic between the outside world, the DMZ and the local network. I'm still testing and trying to put together some documentation but I should have something that's installable and usable by the end of this week. Since the only connection tracking module currently part of the standard distribution is FTP, masquerading some applications doesn't work. I also don't yet have tunnel support or support for VPN masquerading (John Hardin is working on the latter but his time to devote is limited). -Tom -- Tom Eastep \ Alt Email: [EMAIL PROTECTED] ICQ #60745924 \ Websites: http://seawall.sourceforge.net [EMAIL PROTECTED] \ http://seattlefirewall.dyndns.org Shoreline, Washington USA \___________________________________________ _______________________________________________ Leaf-devel mailing list [EMAIL PROTECTED] http://lists.sourceforge.net/lists/listinfo/leaf-devel
