[geeks] Routing problem: solution in progress
Sridhar Ayengar
ploopster at gmail.com
Tue Dec 26 19:28:26 CST 2006
Charles Shannon Hendrix wrote:
> Tue, 26 Dec 2006 @ 11:21 +0200, Michael-John Turner said:
>
>>> Of course, I have no complex firewall rules yet, and right now ipfilter
>>> setup is minimal, and I'm not running a snooper yet.
>> You should take a look at pf - I switched from IPFilter to pf a few years
>> back and I'm very happy. NetBSD 3.1 supports it, but not in the GENERIC
>> kernel - you'll either need to load the lkm or build a custom kernel with
>> pf support.
>
> I might take a look. I've not built a kernel for it yet. Too many other
> distractions, and I am not bothered much by the stock kernel yet.
What's pf's big advantage over IPFilter? Performance? Simplicity?
Shorter data path?
Peace... Sridhar
More information about the geeks
mailing list