OpenBSD Journal
Home : : Add Story : : Archives : : About : : Create Account : : Login :

<< Re: iptables | Up: Re: iptables | Flattened | Expanded | Re: iptables >>

Threshold: Help

  Re: iptables (mod -2/104)
by Anonymous Coward on Fri Jul 11 14:20:00 2003 (GMT)
  On the previous comment comparing "ipf" and "pf".

I have no personal experience using OpenBSD's "pf",
however, I have lots of experience with FreeBSD's
"ipfw" and I have also extensively used "ipf".

From my experienceces I have found that "ipf" is *significantly* slower than "ipfw". Although the
"ipf" syntax is simpler, it simply lacks a lot of
the features and functionality of "ipfw".

I am extremely interested in "pf" particularly for the "authpf" and "altq" features which are non-existent with "ipfw" -- there are some queuing tools, but nothing that can compare to OpenBSD's "altq".

Just my 2 cents.
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

[ Home | Add Story | Archives | Polls | About ]

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original with Jose's and Jim's kind permission. Some icons from used with permission from Kathleen. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. Search engine is ht://Dig. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]