From owner-freebsd-doc@FreeBSD.ORG  Fri Dec 23 05:10:20 2005
Return-Path: <owner-freebsd-doc@FreeBSD.ORG>
X-Original-To: doc@FreeBSD.org
Delivered-To: freebsd-doc@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8C79B16A420
	for <doc@FreeBSD.org>; Fri, 23 Dec 2005 05:10:20 +0000 (GMT)
	(envelope-from markspace@sbcglobal.net)
Received: from smtp104.sbc.mail.mud.yahoo.com (smtp104.sbc.mail.mud.yahoo.com
	[68.142.198.203])
	by mx1.FreeBSD.org (Postfix) with SMTP id 124EB43D77
	for <doc@FreeBSD.org>; Fri, 23 Dec 2005 05:10:06 +0000 (GMT)
	(envelope-from markspace@sbcglobal.net)
Received: (qmail 9973 invoked from network); 23 Dec 2005 05:10:05 -0000
Received: from unknown (HELO ?10.0.0.11?)
	(markspace@sbcglobal.net@69.224.14.128 with plain)
	by smtp104.sbc.mail.mud.yahoo.com with SMTP; 23 Dec 2005 05:10:05 -0000
Message-ID: <43AB893C.8030109@sbcglobal.net>
Date: Thu, 22 Dec 2005 21:21:00 -0800
From: Mark Space <markspace@sbcglobal.net>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US;
	rv:1.7.3) Gecko/20040910
X-Accept-Language: en-us, en, ja
MIME-Version: 1.0
To: kirubiru <kirubiru@hotpop.com>,  doc@FreeBSD.org
References: <43AB738A.70702@hotpop.com>
In-Reply-To: <43AB738A.70702@hotpop.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: 
Subject: Re: handbook/firewalls-apps.html
X-BeenThere: freebsd-doc@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Documentation project <freebsd-doc.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-doc>
List-Post: <mailto:freebsd-doc@freebsd.org>
List-Help: <mailto:freebsd-doc-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Dec 2005 05:10:20 -0000

kirubiru wrote:

> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-apps.html 
>
>
> "...different people have different requirements and preferences."
>
> How about giving some simple characteristic of each?
>
"...different people have different requirements and preferences. No 
single firewall package is the best.

"The author prefers IPFILTER because its stateful rules are much less 
complicated to use in a NAT environment and it has a built in ftp proxy 
that simplifies the rules to allow secure outbound FTP usage."

You mean like IPFILTER has stateful rules and is much easier to use in a 
NAT environment?  And IPFILTER also has the author's personal recomendation?

By gum, that's a great idea.  We should add it right away!! ...oh wait...

kthxbye