Artikelbeschreibung:
m0n0wall is a project aimed at creating a complete, embedded firewall software package that, when used together with an embedded PC, provides all the important features of commercial firewall boxes (including ease of use) at a fraction of the price.
m0n0wall is based on a bare-bones version of FreeBSD, along with a web server, PHP and a few other utilities. The entire system configuration is stored in one single XML text file to keep things transparent.
m0n0wall is probably the first UNIX system that has its boot-time configuration done with PHP, rather than the usual shell scripts, and that has the entire system configuration stored in XML format.
m0n0wall already provides many of the features of expensive commercial firewalls, including:
known issue: IPsec SAD diagnostics page doesn't work properly
WARNING: the generic-pc image no longer fits on 8 MB CF cards! (>= 10 MB required)
enabled NAT-T support for IPsec VPN (enable via webGUI)
compiled SNMP agent with support for memory usage information MIB
back-ported MSS clamping fix from MPD 4.0b5 to MPD 3.18 (fixes MTU problems with PPPoE client)
enabled hostap for wireless cards supported by the ral(4) driver
forced PIO mode for ATA driver to work around problems with quirky hardware (IDE controllers, CF cards)
automatic keyboard detection for generic-pc(-cdrom); fallback to serial console if no keyboard found
enabled AES for IPsec phase 1
Captive portal fix (jdegraeve): now always sends the session time in RADIUS accounting messages instead of only sending it within an Accounting-Stop. This should make most prepaid systems work again.
