Most wanted packet filter
Jeremie Le Hen
jeremie at le-hen.org
Wed Jul 20 21:47:20 GMT 2005
Hi Mark,
> How difficult is it to switch from IPFW2 to PF or use the two in
> conjunction with one another and are there any good URL "how to" sites
> with that information?
The syntax is really different, nothing common. But none is difficult.
It is possible to use both, but this makes maintainability more complex,
IMO. IIRC the precedence of each firewall depends on the order which
they registered on PFIL_HOOKS. The trick to force certain order is to
compile the first one in the kernel and the second on as a module.
Please correct me if I'm wrong.
Regards,
--
Jeremie Le Hen
< jeremie at le-hen dot org >< ttz at chchile dot org >
More information about the freebsd-ipfw
mailing list