From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-121850-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1QCg8A-0005j5-6M
	for garchives@archives.gentoo.org; Wed, 20 Apr 2011 22:44:18 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 047A61C006;
	Wed, 20 Apr 2011 22:42:09 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id B76A81C006
	for <gentoo-user@lists.gentoo.org>; Wed, 20 Apr 2011 22:42:09 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by smtp.gentoo.org (Postfix) with ESMTP id 53D2A1B405D
	for <gentoo-user@lists.gentoo.org>; Wed, 20 Apr 2011 22:42:09 +0000 (UTC)
X-Virus-Scanned: by amavisd-new using ClamAV at gentoo.org
X-Spam-Score: -3.289
X-Spam-Level: 
X-Spam-Status: No, score=-3.289 required=5.5 tests=[AWL=-0.690,
	BAYES_00=-2.599]
Received: from smtp.gentoo.org ([127.0.0.1])
	by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 9jlsCbZ++f5B for <gentoo-user@lists.gentoo.org>;
	Wed, 20 Apr 2011 22:42:03 +0000 (UTC)
Received: from lo.gmane.org (lo.gmane.org [80.91.229.12])
	by smtp.gentoo.org (Postfix) with ESMTP id E8E731B4065
	for <gentoo-user@gentoo.org>; Wed, 20 Apr 2011 22:42:00 +0000 (UTC)
Received: from list by lo.gmane.org with local (Exim 4.69)
	(envelope-from <lnx-gentoo-user@m.gmane.org>)
	id 1QCg5u-0007QH-3T
	for gentoo-user@gentoo.org; Thu, 21 Apr 2011 00:41:58 +0200
Received: from c-98-215-231-30.hsd1.in.comcast.net ([98.215.231.30])
        by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
        id 1AlnuQ-0007hv-00
        for <gentoo-user@gentoo.org>; Thu, 21 Apr 2011 00:41:58 +0200
Received: from reader by c-98-215-231-30.hsd1.in.comcast.net with local (Gmexim 0.1 (Debian))
        id 1AlnuQ-0007hv-00
        for <gentoo-user@gentoo.org>; Thu, 21 Apr 2011 00:41:58 +0200
X-Injected-Via-Gmane: http://gmane.org/
To: gentoo-user@lists.gentoo.org
From: Harry Putnam <reader@newsguy.com>
Subject: [gentoo-user] Re: [OT router advice] a router capable of detailed logs
Date: Wed, 20 Apr 2011 17:41:46 -0500
Organization: Still searching...
Message-ID: <87mxjkbl5h.fsf@newsguy.com>
References: <878vv69asl.fsf@newsguy.com>
	<F2756E4E-AC34-46D7-A8D3-D2C51491CD99@stellar.eclipse.co.uk>
	<8739lceqmm.fsf@newsguy.com>
	<BANLkTik+4DObqLFRTTTRSAzDdDyD=39eWg@mail.gmail.com>
	<87fwpcd8ol.fsf@newsguy.com>
	<BANLkTingiDXSPGUAdvdMDzqVxSdutTMZQg@mail.gmail.com>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
X-Complaints-To: usenet@dough.gmane.org
X-Gmane-NNTP-Posting-Host: c-98-215-231-30.hsd1.in.comcast.net
User-Agent: Gnus/5.110016 (No Gnus v0.16) Emacs/24.0.50 (gnu/linux)
Cancel-Lock: sha1:vlc6IuNgutuNJxwYjMAFoh8zoZI=
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: 
X-Archives-Hash: 56f16dbeaf13e7437714a89b4dc1cc73

Paul Hartman <paul.hartman+gentoo@gmail.com> writes:

> On Wed, Apr 20, 2011 at 2:28 PM, Harry Putnam <reader@newsguy.com> wrot=
e:
>>
>> Whereas openWRT sounds like you may need to role your own iptables
>> script right off the bat. =C2=A0at least judging from a few posts I've=
 now
>> read from their mailing list where people seem to be asking the kinds
>> of iptables questions you might find on that list..
>
> Right, OpenWRT is more of a "do-it-yourself" distro, with a package
> manager, you install what you want to use and configure it yourself.
> DD-WRT is more of the "ubuntu-style" router OS, it comes with a bunch
> of services pre-installed and pre-configured, with a pretty GUI, and
> you only have to enable or disable them and the defaults are set up
> for your hardware already.
>
> Under the surface, both are very similar, in fact I read that new
> versions of DD-WRT are going to be developed on top of OpenWRT. Both
> can be configured via telnet/ssh or via a web GUI.
>
> I think that if someone can handle Gentoo, they can definitely handle
> OpenWRT.=20

What I see is somewhat difficult is learning enough iptables to be
competent with it.

As I recall from yrs ago it is not that easy to keep from shooting
yourself in the foot and ending up hacked or such with iptables.

> . . . . . I have 3 Buffalo routers (all different models) and I'm using
> DD-WRT on 2 of them and OpenWRT on the other, though I'm not doing
> anything particularly complicated on any of them.

What I have to do is probably a lot simpler than what you are doing
with any of them.  Just a home lan router/firewall.  But if I had to
learn iptables, that throws `simple' right out the door.

Are you running iptables on any of them?

Does the one using openWRT have a basic firewall in place and some
wrapper around iptables to make the creation of rules a bit easier.?=20