firewall
Travis H.
solinym at gmail.com
Sun Aug 13 02:23:06 UTC 2006
As I remember it, the only feature IPFilter had that I used that pf
doesn't have was the ability to simulate throwing packets at it and
see what their disposition is. I wrote a test harness to check the
sanity of my firewalls, before committing them to CVS.
I highly recommend switching to pf. I haven't followed ipfilter, but
it's encumbered and last I checked (a _long_ time ago), it didn't have
packet scrubbing or nearly 50% of the features of pf.
--
"If you're not part of the solution, you're part of the precipitate."
Unix "guru" for rent or hire -><- http://www.lightconsulting.com/~travis/
GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484
More information about the freebsd-pf
mailing list