Results 1 to 9 of 9
  1. #1

    FreeBSD Firewall - APF, CSF


    I have a FreeBSD box, and I`m trying to install Firewall. I have tested APF and CSF, and in both cases installation has failed.

    Have someone experience with those two firewall on BSD box, I like apf, looks easy-to-use (configure), but I got some errors like:

    server# ./
    Installing APF 0.9.6-1: cp: /etc/cron.daily/fw: No such file or directory
    chmod: /etc/cron.daily/fw: No such file or directory
    source: not found
    [: unexpected operator
    vnetgen.def not found, aborting.

  2. #2
    Join Date
    Dec 2005
    Why not using a beautiful firewall like IPFW? I dont think APF works well with FreeBSD.

  3. #3
    Join Date
    Mar 2003
    California USA
    APF doesnt work on freebsd due to the fact its iptables based.
    Steven Ciaburri | Industry's Best Server Management -
    Software Auditing - 400+ Vulnerabilities Found - Quote @
    Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
    FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance

  4. #4
    Thank you for your reply linuxcares,

    you wrote "beautiful" what is so far from words "suicidal, dangerous,..." which I have always met while reading articles about IPFW.

    I don`t know, if it`s best solution on FreeBSD (looks like only one so far approved on BSD) I`ll try... If someone has some really good tutorail about IPFW can post here, tnx.


  5. #5
    Join Date
    Dec 2005
    Everything is properly documented on their official website. See this.

  6. #6
    Join Date
    Oct 2005
    Fleet Street
    IPFW is terrific - I use FreeBSD on all my servers and have custom ipfw rules on every box.

  7. #7
    Join Date
    Aug 2003
    Yeah ipfw2 specifically gets my vote (anything 5.x on up default compiles ipfw2 vs the older ipfw, typically not a huge difference noticeable to the end user).

    Not sure were suicidal or dangerous comes into play with ipfw2 (unless of course you forget to RTFM if you get stuck before just adding rules, in which case then same goes for anything iptables based as well...).
    Justin Schurawlow :: Technology Enthusiast
    Schurawlow PC Repair
    Computer Services for the Lehigh Valley area
    Blog :: The Justin Schurawlow Blog

  8. #8
    FreeBSD as PF built in. PF is actually from the OpenBSD project, and in my opinion is far and away the best firewall around. Just google, there is plenty of info around. If you're already familiar with something like ipfw then I guess use it, but if you don't have a preference then PF is the way to go on fbsd.

  9. #9
    Join Date
    Mar 2004
    Tokyo / Japan
    have you tried "cerb" ?
    Also I agree with pergesu that PF is not a bad choice at all.
    __--- Nils Valentin ---
    ☆★☆ Speedtest One: Tokyo / Japan ☆★☆ / Feedback
    ☆★☆ Speedtest Two: Tokyo / Japan ☆★☆ / Feedback

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts