From cns.utoronto.ca!russ Thu Jul 25 08:26:15 2002 Date: Thu, 25 Jul 2002 08:26:07 -0400 To: filbert@cns.utoronto.ca Subject: Re: Open Source firewall webpage (was "RE: [Fwd: Re: Something to cheer ...") Message-ID: <20020725122607.GD6469@madhaus.cns.utoronto.ca> References: <02Jul24.165041edt.444742@rodent.utcs.utoronto.ca> From: Russell Sutherland > What we could do is collect URLs and opinions about the various types > of firewalls which are currently being used on campus. If you'd like > to contribute this type of information, feel free to send an email to > "filbert@cns.utoronto.ca" and we'll add that information alongside the > firewall package. Paul/Filbert: As I showed you a few days ago, I'm using the following hardware/firewall software to filter packets to and from the new authentication network: OpenBSD + PF: http://www.openbsd.org/ http://www.benzedrine.cx/pf.html http://www.inebriated.demon.nl/pf-howto/ Net4501 hardware: http://www.soekris.com/net4501.htm EmBSD bundling of the above OS+hardware: http://embsd.suspicious.org/ -- Russell P. Sutherland Email: russ@madhaus.cns.utoronto.ca 4 Bancroft Ave., Rm. 102 Voice: +1.416.978.0470 University of Toronto Fax: +1.416.978.6620 Toronto, ON M5S 1C1 WWW: http://madhaus.cns.utoronto.ca/~russ CANADA From utoronto.ca!e.meddings Fri Sep 6 16:20:53 2002 Message-ID: <3D790EDC.5F234BE5@utoronto.ca> Date: Fri, 6 Sep 2002 16:23:56 -0400 From: "Dr. Eric Meddings" Reply-To: e.meddings@utoronto.ca Subject: AMS AND FIREWALLS We are using a product call GNAT-box....www.gnatbox.com It allows us to alias the firewall ip and then statically map it to an internal ip behind the firewall with a tunnel. In this way each user appears to be on a different machine. You can also filter the traffic to make the tunnel between the two machines a tight as you like. The web site has all the details Have fun -Eric :-)