From owner-freebsd-questions@FreeBSD.ORG Mon Apr 28 03:12:38 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B8718106568B for ; Mon, 28 Apr 2008 03:12:38 +0000 (UTC) (envelope-from ehumphri@gmail.com) Received: from yw-out-2324.google.com (yw-out-2324.google.com [74.125.46.30]) by mx1.freebsd.org (Postfix) with ESMTP id 6CE288FC14 for ; Mon, 28 Apr 2008 03:12:38 +0000 (UTC) (envelope-from ehumphri@gmail.com) Received: by yw-out-2324.google.com with SMTP id 5so790477ywh.13 for ; Sun, 27 Apr 2008 20:12:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=0qO96H47aNGQlfmznbsNM0un1ev8levtOHwXoFjX6To=; b=riVcMhOq8JlVeAR9YWSCtglbBT+2G5+MBaTmDuzqfX4+Ryi/2A+9XBJXvaAv368fBp0Ap31WnyrEwGixr4pGeLyC0fHBbDB3dVpS7g3x5NF3xUViXTi1O04H4NdIrjOZTQWYx47/T/rw4a0FHtkfDV5GlrnFc6NLDC/4oVeB7zM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=qTfgvS9710nOt2acXhTcWFP8Xsf2igq4APM9pZNRhuHLHiPA6kZRvr0J+tdL/YL+IpG2xBPLvuLbjcEzi32QyCWWQuknrEZ+ADKV0LeUZ0dOE/3t++MPWV+/mwJGFYRsYLfzROEYoHQrAZ5mJBVHMdEcENcNuEkZCwqYis+YI0I= Received: by 10.150.79.32 with SMTP id c32mr3210808ybb.158.1209350675110; Sun, 27 Apr 2008 19:44:35 -0700 (PDT) Received: by 10.151.11.10 with HTTP; Sun, 27 Apr 2008 19:44:35 -0700 (PDT) Message-ID: <9b09889b0804271944l24f9d7a8v240017ac401bd828@mail.gmail.com> Date: Sun, 27 Apr 2008 21:44:35 -0500 From: "Eric Humphries" To: "Doug Hardie" In-Reply-To: <05B6619C-9771-41EA-B43E-05DB40CB3258@lafn.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <05B6619C-9771-41EA-B43E-05DB40CB3258@lafn.org> Cc: freebsd-questions Subject: Re: Firewalls X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 28 Apr 2008 03:12:38 -0000 On Sun, Apr 27, 2008 at 8:14 PM, Doug Hardie wrote: > FreeBSD supports 3 firewalls: IPF, IPFW, and PF. Some time ago (perhaps > years) I seem to recall some discussion that one or more of those was better > maintained and higher quality than the others. I don't see any indications > of this in the handbook. Several years ago I needed to do traffic shaping > and used IPFW with dummynet. It worked but the need eventually went away. > More recently I needed to incorporate spamd which defaults to PF so I used > that. However, now I am back to needing traffic shaping again. I suspect > trying to use both PF and IPFW simultaneously will not be a good approach. > In addition, there now are instructions for using spamd with IPFW so it > appears that either PF or IPFW will do what I need. Is there any additional > information available to assist in selecting between those? Thanks. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > PF supports traffic shaping via ALTQ. -- efk