| 1 |
On Wed, Aug 03, 2005 at 08:20:42AM -0500, Harry Putnam wrote |
| 2 |
|
| 3 |
> These machines will also be internet connected and there for will need |
| 4 |
> some onboard protection beyond my gateway/firewall. |
| 5 |
> |
| 6 |
> I want to find a packet filter like iptables for use on windows. That |
| 7 |
> is, a text based/editable driven packet filter with most or all the |
| 8 |
> capabilities of iptables. |
| 9 |
> |
| 10 |
> If it is possible to run iptable from cygwin then I'd prefer that |
| 11 |
> approach. Anyone have pointers/urls? |
| 12 |
|
| 13 |
Even if you could do it, running iptables under cygwin is *NOT* what |
| 14 |
you want. Cygwin is a *PROGRAM* running under Windows. Windows will |
| 15 |
get the packets before iptables-under-cygwin-under-Windows does. |
| 16 |
|
| 17 |
You need to get hardware between the internet and the Windows machines |
| 18 |
(i.e. a "hardware firewall"). Try a cheap NATing router. Many |
| 19 |
broadband modems now include a NATing router. If you want, you can try |
| 20 |
setting up a linux machine as a firewall-cum-NATing-router. That'll be |
| 21 |
where iptables shines. |
| 22 |
|
| 23 |
-- |
| 24 |
Walter Dnes <waltdnes@××××××××.org> |
| 25 |
My musings on technology and security at http://tech_sec.blog.ca |
| 26 |
-- |
| 27 |
gentoo-user@g.o mailing list |
Archives