Most wanted packet filter
Roger Grosswiler
roger at gwch.net
Thu Jul 21 05:33:18 GMT 2005
> Hi Mark,
>
>> How difficult is it to switch from IPFW2 to PF or use the two in
>> conjunction with one another and are there any good URL "how to" sites
>> with that information?
>
> The syntax is really different, nothing common. But none is difficult.
>
> It is possible to use both, but this makes maintainability more complex,
> IMO. IIRC the precedence of each firewall depends on the order which
> they registered on PFIL_HOOKS. The trick to force certain order is to
> compile the first one in the kernel and the second on as a module.
> Please correct me if I'm wrong.
>
> Regards,
> --
> Jeremie Le Hen
> < jeremie at le-hen dot org >< ttz at chchile dot org >
> _______________________________________________
> freebsd-ipfw at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe at freebsd.org"
>
So, the most recommended seems to be pf for the moment. I thank you all
very much for your input.
Roger
More information about the freebsd-ipfw
mailing list