Linux router software recommendation?
Derek Atkins
warlord at MIT.EDU
Tue Sep 13 09:41:53 EDT 2005
John Abreau <jabr at blu.org> writes:
> The idea was that enough of the kernel would still be running to handle
> the iptables rules, but there would be no OS underneath for anyone to try
> to break into.
Unfortunately this doesn't work when you want your firewall to also be
an IPsec endpoint. You need the IPsec processes to actually run (in
userspace) -- so you have to have a running OS.
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord at MIT.EDU PGP key available
More information about the Discuss
mailing list