Re: OBSD firewall/router and DSL

[Alatakis@t-online.de (Chris Alatakis)]

just go to rc.conf.local (prefered) or rc.conf
and disable inetd. You can run services as daemons.
Is more secure and stable to run services out of inetd.

As for pf the openbsd site pf section is a grate guide for someone
to write a firewall for dsl home and not only use as you want.


You will do not need to look elsewhere.




Regards,

Chris
----- Original Message ----- 
From: "Ian F. Darwin" <ian@darwinsys.com>
To: <jhart@nacs.net>
Cc: <misc@openbsd.org>; "Ian F. Darwin" <ian@darwinsys.com>
Sent: Monday, February 09, 2004 12:37 AM
Subject: Re: OBSD firewall/router and DSL


| First, this belongs on misc, not sparc. Your query is not 
| SPARC-architecture specific.
| 
| > Each source has a "config" for using DSL with OBSD, but each "config" 
| > is
| > different. Trying to figure out which config to use, leaves many 
| > questions
| > unanswered. .. So ... please send me your
| > pf.conf, so I can see what kinds of things are configured.
| 
| You already have too many to pick from, and you want more? What you 
| need to
| do is read the man pages and the book sections on pf, and figure out 
| what you
| really want to do. Looking at various examples can help, but is no 
| substitute
| for understanding what the various commands do.
| 
| > Also, the Building firewalls book explains about turning off 
| > non-essential
| > services such as identd, time, daytime, and comsat.  I read the man 
| > pages for
| > each, and feel I do not need these services, so if someone could please
| > inform me as to when I might want to run these services, it would help 
| > me to
| > decide if I should just turn them off.
| 
| Turn them all off. Turn them on when somebody important complains.
| 
|