Honeypots: Re: Openbsd firewall

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Honeypots mailing list archives

Re: Openbsd firewall

From: Alexandre Dulaunoy <adulau () foo be>
Date: Mon, 2 Aug 2004 13:23:57 +0200 (CEST)

On Thu, 29 Jul 2004, joe smith wrote:

I currently testing an openbsd gateway/firewall for my honeypot setup.  
I'm limiting the amount of bandwidth for each honey pot.  Does anyone 
know why I can not set it below 5.6 kilobits?


I think  you already got a  reply regarding ALTQ but  this not trivial
due to  the various type  of queueuing and  the inner working  of ALTQ
too. 

Another  approach  that   can  work  for  Honeynets  is   to  use  the
max-src-states, max-src-nodes and max. Check stateful tracking options
in pf.conf(5). 

Hope this helps,

adulau


-- 
--                   Alexandre Dulaunoy (adulau) -- http://www.foo.be/
--         http://pgp.ael.be:11371/pks/lookup?op=get&search=0x44E6CBCD
--         "Knowledge can create problems, it is not through ignorance
--                                that we can solve them" Isaac Asimov

By Date By Thread

Current thread:

Openbsd firewall joe smith (Jul 29)
- Re: Openbsd firewall victor calzado (Jul 30)
- Re: Openbsd firewall Travis Boucher (Jul 30)
- Re: Openbsd firewall Alexandre Dulaunoy (Aug 02)
  - Re: Openbsd firewall joe smith (Aug 02)