How to tell if IPF is running?
Peter
petermatulis at yahoo.ca
Thu Jan 19 08:05:34 PST 2006
--- Erik Norgaard <norgaard at locolomo.org> wrote:
> Peter wrote:
> > --- Erik Norgaard <norgaard at locolomo.org> wrote:
> >
> >> Gable Barber wrote:
> >>> On 1/18/06, Peter <petermatulis at yahoo.ca> wrote:
> >>>> Switch over to pf.
> >>>>
> >>> Why do you suggest PF over IPF?
> >>>
> >>> Hope I am not starting a war here.. but I am genuinely interested in
> >> the
> >>> opinions.
> >> I used IPF on FBSD until there was some bug in IPF for 5.x some
> version
> >> that forced me to switch after an upgrade. The bug has been fixed
> since
> >> but I have found no reason to go back.
> >>
> >> There are two things I miss from IPF:
> >>
> >> a) proper accounting: You can't count traffic correctly with stateful
>
> >> filtering on pf, pf will count when a rule is matched but once a
> state
> >> is established packets for that state are not matched and hence not
> >> counted.
> >
> > That's not true.
> I need host based counting that distinguish up- and download.
> And, I still don't know the easy solution to get the numbers out.
>
> Of course there is a point in PF, namely that there is just one ruleset
> whereas in IPF filtering and accounting rules are separate.
Use labels. I admit that accounting in pf can lead to a more messy
ruleset.
--
Peter
__________________________________________________________
Find your next car at http://autos.yahoo.ca
More information about the freebsd-questions
mailing list