from the personal-firewalls dept.
"I've been running OpenBSD since 2.7 and have had great reliable systems since. I have finally gotten into securing these systems (small home and community networks) using PF. I've only set up generic firewall rule sets and have been ok, and only upgraded verses patching. Now I am to a point where I am only focusing on security and these systems as it will be my full time job and I ahve some high school students to help me out. I also want to deploy one as a workstation at home on my cable modem connection. I know there are personal firewalls such as zone alarm and what not, but who has used PF on their desktop and what kind of ruleset do you have? I know I need to do more than
What else should be considered for a desktop application?
My personal laptop rules are to scrub everything in, pass things out keeping state, and block everything in. Has served me well for years. Unfortunately, I don't know of any application to firewall mapping system like ZoneAlarm for OpenBSD, but it shouldn't be too hard to do that. Anyone have any suggestions for personal boxes, as oppposed to servers of some kind, that go beyond this simple ruleset?