Quote:
Originally Posted by jepettrey
I probably could build a new firewall to the best of my ability in regards to how the network appears to be configured and then just find out that what is broken and what needs to be fixed. However, I haven't worked with OpenBSD before so I'd rather use this as a learning opportunity and establish a new skillset.
|
This sounds like you have put some thought into it, but you should also factor in the exceedingly short shelf life of firewall software.
Given that the purpose of firewalls is to plug/thwart many of the vectors malevolent souls exploit to either get past security roadblocks or perform malicious acts, making sure firewall software is current & patched should be a paramount goal.
Also if I recall correctly, there were significant performance enhancements made to both OpenBSD 4.2 & 4.4. Once you become familiar with the terrain, moving to 4.7
(& OpenBSD 4.8 will be released in November...) should be high on your list of things to get done.