[OmniOS-discuss] Firewall in OmniOS?
Gary Gendel
gary at genashor.com
Wed Oct 19 16:17:44 UTC 2016
I used OpenIndiana and OmniOS with ipfilter in a router configuration
for years without any serious issues. I was also providing DNS, DHCP
and IPv6 over v4. However, one of the drawbacks of this is that, if you
use this as your WAN/LAN router, you bring your whole network down with
the occasional reboot.
I ended up picking up a MicroTik RB750 for about $50. This is no longer
made but the "hEX" replacement looks sweet. These have Cisco-level
functionality, a tiny footprint, and low power consumption. I've never
looked back. I'm running a split-horizon DNS with hairpin routing rules
so the internal network machines get the internal ip addresses for the
services. It reboots in a few seconds so there is minimal downtime when
I upgrade the software.
Adding my $.02 too.
Gary
On 10/19/2016 11:58 AM, Dan McDonald wrote:
> I still use ipfilter, but only as a NAT.
>
> Porting one of the others to OmniOS/illumos would require a lot of work. (Hell, part of me thinks writing a NAT-only hooks module would be easier.)
>
> My $.02,
> Dan
>
> _______________________________________________
> OmniOS-discuss mailing list
> OmniOS-discuss at lists.omniti.com
> http://lists.omniti.com/mailman/listinfo/omnios-discuss
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3703 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://omniosce.org/ml-archive/attachments/20161019/aede22f6/attachment.bin>
More information about the OmniOS-discuss
mailing list