From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1QDPbn-0001L0-Q6 for garchives@archives.gentoo.org; Fri, 22 Apr 2011 23:18:01 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 468821C027; Fri, 22 Apr 2011 23:16:29 +0000 (UTC) Received: from ns1.bonedaddy.net (ns1.bonedaddy.net [70.91.141.202]) by pigeon.gentoo.org (Postfix) with ESMTP id 089541C027 for ; Fri, 22 Apr 2011 23:16:28 +0000 (UTC) Received: from ns1.bonedaddy.net (localhost [127.0.0.1]) by ns1.bonedaddy.net (8.14.4/8.14.4) with ESMTP id p3MMlJiB005073 for ; Fri, 22 Apr 2011 18:47:19 -0400 Received: (from tgoodman@localhost) by ns1.bonedaddy.net (8.14.4/8.14.4/Submit) id p3MMlJHP005072 for gentoo-user@lists.gentoo.org; Fri, 22 Apr 2011 18:47:19 -0400 X-Authentication-Warning: ns1.bonedaddy.net: tgoodman set sender to tsg@bonedaddy.net using -f Date: Fri, 22 Apr 2011 18:47:19 -0400 From: Todd Goodman To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: [OT router advice] a router capable of detailed logs Message-ID: <20110422224719.GK19259@ns1.bonedaddy.net> References: <878vv69asl.fsf@newsguy.com> <8739lceqmm.fsf@newsguy.com> <87fwpcd8ol.fsf@newsguy.com> <20110421122229.GA9766@ns1.bonedaddy.net> <87y632c9u0.fsf@newsguy.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <87y632c9u0.fsf@newsguy.com> User-Agent: Mutt/1.5.21 (2010-09-15) X-Archives-Salt: X-Archives-Hash: 80b7194f0564a66d4b72761a0db3f23b * Harry Putnam [110422 16:00]: > Todd Goodman writes: > > > There is a basic firewall in place with OpenWRT (enabled by default.) > > > > There is a a web GUI for OpenWRT (as well as with DD-WRT.) > > > > The web GUI supports the usual config pages as with other similar home > > routers. > > > > There's a status page showing the iptables chains with the packet > > counts for each rule (the most complicated page to view I'd say.) > > > > There's config pages for overall firewall config with default policies > > and other things such as zone config. There's a "traffic control" page > > which lets you define your filter rules and a "Traffic Redirection" page > > which allows you to set up your port forwarding (DNAT.) > > > > It's quite easy to configure and doesn't require iptables knowledge. > > > > Though I like very much that the option is there if I want to take > > advantage of it. > > [...] > > I want to thank you for providing such detailed information. It is a > very helpful reply... thanks > You're welcome. BTW, rereading what I wrote above, I didn't mean to imply that DD-WRT doesn't have a basic firewall in place by default (I don't know if it does, I'd assume so.) Also, I've been running lots of traffic through the wireless on that Buffalo OpenWRT box and haven't experienced any drops (the same traffic caused a LinkSys and TrendNet box running the commercial firmware to drop the wireless connections.) So I'm happy with at this point. Todd