1/14    I am trying to use DI-604 as a firewall but it comes with zero doc.
        about ipfw rules.  The firewall rules has only one port specification.
        Does it refer to the wan or lan?  Are the rules stateful or static?
	...

12/2    I used the "ShieldUp" website to probe my Mac and it shows that port 0
        and 1 are replying to outside query to say they are closed instead of
        just playing deaf like the other lower ports do.  I did not single
        out port 0 and 1 in the ipfw rules I use.  What rules should I use to
        close this loophole?
        \_ First off, don't use random pages like that, as Steve Gibson is
	...

5/9     Sometimes I need to upload large files on my 1500k/192k aDSL. This
        totally kills my Internet usability. Is there any uber cool BSD/Darwin
        tool that will let me throttle a particular socket? If I could just
        limit my FTP to something like 128k... tnx
        \_ rsync --bwlimit=KBPS ...
        \_ man ipfw
	...

2/4     Since ipfw rules does not care which program is making the outbound
        access, how do I block, say all outgoing traffic except that generated
        by ssh and mozilla?
        \_ That's not really what ipfw does.  Block all outbound traffic
           destined for ports other than 80, 443 and 22.
           \_ Okay, is there a way to block based on program name in FreeBSD?
	...

9/4     Does anyone know whether there's a way to use interface names
        in an ipfilter/ipnat configuration, as opposed to an interface's IP
        address?  -John
        \_ With ipfw there was, and I think ipf has a way to.  Must dig some.
           ... with pf (openbsd) it is very simple.
           --scotsman
	...

2/21    reposting my question.  Is it possible to filter gige traffic
        with freebsd on x86?  Can the fastest pentium out there do that?
        I'm talking about running ipfw or ACLs.  Please do not turn this
        question into a troll on linux vs freebsd.  Thanks.
        \_ Processor speed is definitely not your problem.  I think you may
           run into problems where gige would overwhelm the PCI bus.  Not
	...

12/07   I'm a big lazy wimp who has been spoiled by the nice easy
        GUI that comes with Firewall one.  Anyone know a nice
        easy gui frontend for managing netfilter/ipfw rules?
        \_ vi
        \_http://sourceforge.net/softwaremap/trove_list.php?form_cat \
          =10&discrim=151
	...

10/19   Home Gateway recommendations wanted. I am thinking of getting
        a NetGear RP114. I use Pacbell DSL (dhcp not static ip). Any
        pros/cons to using this model? Is there a better one within
        the same price range? (approx $120). thanks.
        \_ I use a Linksys for around $98.  It has firewall, IPSEC
           support, 10/100 support.  No "parental control" though.
	...

2/26    Is it possible to use ipfw in *BSD to let users do FTP gets but not
        FTP puts?  I'm being asked to let people get stuff from the internet
        but not let them send anything out.  If ipfw can't do it, how about a
        commercial firewall like Cisco PIX or Checkpoint?  Thanks.
           \_ Checkpoint can't. I don't know about PIX, it might have
              tcp payload inspection.
	...

4/26    I have one IP address on my DSL line.  I have three computers
        on my LAN.  I want to be able to telnet into any of these from
        an outside IP address.  How do I do this?  [Question re-phrased]
        [Does anyone know of a product that can route more than one domain
        on one ip?  I know this is possible with virtual hosting.  Im trying
        to set up three computers I can telnet to on my DSL line, which only
	...