Date: Mon, 5 Aug 2002 09:52:23 -0300 (ART) From: Fernando Gleiser <fgleiser@cactus.fi.uba.ar> To: Josh Paetzel <friar_josh@webwarrior.net> Cc: "Freebsd-Questions (E-mail)" <freebsd-questions@FreeBSD.ORG> Subject: Re: Which provides a better firewall (ipfw or ipf) Message-ID: <20020805095049.J6656-100000@localhost> In-Reply-To: <20011128113013.B550@twincat.vladsempire.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 28 Nov 2001, Josh Paetzel wrote: > > #2 ipfw uses a first match wins ruleset, whereas ipf is a last match > wins setup. This can cause the ruleset to get quite bulky > and hard to follow especially if it is a longish ruleset, as > you end up using a lot of quick rules to keep common packets > from going through every rule in the list. ipf can be first-match also. Take a look at the 'quick' keyword. Fer > > Hope that helps you make an informed decision. > > Josh > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020805095049.J6656-100000>