cvs commit: src/sys/contrib/pf/net if_pflog.c if_pflog.hif_pfsync.c src/sys/contrib/pf/netinet in4_cksum.c

Andrew Thompson andy at fud.org.nz
Thu Feb 26 14:52:03 PST 2004


On Thu, Feb 26, 2004 at 02:40:49PM -0800, Tim Kientzle wrote:
> >>>Choice is good.  Three firewalls is maybe pushing the limit, but these
> >>>three are Very Important to our community.
> 
> Dunno about pf, but neither ipfw nor ipf have one
> feature I've been looking for.  I'd like to be able
> to say something like:
> 
>   create set BLACKLIST
>   drop ip in BLACKLIST

FWIW,

pf implements this with tables. 

http://www.openbsd.org/faq/pf/tables.html





More information about the cvs-src mailing list