PF is OPENBSD’S default Packet filtering for TCP/IP packets and NAT. PF has been ported to FreeBSD and it is currently at version 4.5 on FreeBSD 9.0-RELEASE. Today, we will see how we can use PF to effectively secure a FreeBSD host on the Internet. Before we even start talking about PF, it is essential …
Contrary to popular belief, firewalls are useless when it comes to securing web applications. I used the general term firewall because most people in the IT field, generally relate to. But the correct term would be network firewall and that’s the one I will use in this post from now on. A network firewall like …
We saw earlier how easy it is to set up munin in FreeBSD. Now, what if a system that you wish to monitor is located somewhere beyond your firewall(s) perimeter ? You could install munin-node and let the whole world to grab your system statistics or become a victim of a future exploit! You could …