Date: Wed, 7 Mar 2001 21:11:31 -0300 (ART) From: Fernando Schapachnik <fpscha@ns1.via-net-works.net.ar> To: Nathan Dorfman <nathan@rtfm.net> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ipfw or ipf? Message-ID: <200103080011.VAA05148@ns1.via-net-works.net.ar> In-Reply-To: <20010307190222.A72795@rtfm.net> "from Nathan Dorfman at Mar 7, 2001 07:02:22 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
En un mensaje anterior, Nathan Dorfman escribió: > Hi all, > > What should I know before deciding on one of ipf or IPFW for > a -stable machine protecting a small network? > > >From what I recall, ipf had a few advantages like kernel-space > NAT, keeping TCP state, and portability. What does IPFW do > better than ipf? Are there any gross downsides to either? On the other hand ipfw can do traffic shaping. On FreeBSD you can build an "invisible" firewall with ipfw doing bridging. AFAIK, you can't do that with FreeBSD+ipf, althought is possible with OpenBSD+ipf. I have both on a very high concept. Good luck! Fernando P. Schapachnik Administración de la red VIA NET.WORKS ARGENTINA S.A. fschapachnik@vianetworks.com.ar To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200103080011.VAA05148>