From owner-freebsd-net@FreeBSD.ORG Thu Jan 22 13:55:05 2004 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B205A16A4CE for ; Thu, 22 Jan 2004 13:55:05 -0800 (PST) Received: from dexter.starfire.mn.org (starfire.skypoint.net [199.199.159.71]) by mx1.FreeBSD.org (Postfix) with ESMTP id A959643D3F for ; Thu, 22 Jan 2004 13:55:03 -0800 (PST) (envelope-from john@dexter.starfire.mn.org) Received: (from john@localhost) by dexter.starfire.mn.org (8.11.3/8.11.3) id i0MLt2S01672 for freebsd-net@freebsd.org; Thu, 22 Jan 2004 15:55:02 -0600 (CST) (envelope-from john) Date: Thu, 22 Jan 2004 15:55:02 -0600 From: John To: freebsd-net@freebsd.org Message-ID: <20040122155502.A1658@starfire.mn.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i Subject: Relative merits of different approaches (ipf, ipfw, ipnat, natd, etc) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Jan 2004 21:55:05 -0000 I have looked at the FAQ, the handbook, The Complete FreeBSD, and haven't found anything like what I'm looking for. There seems to be 2-3 implementations of access control lists and 2-3 implementations of network address translation that apply to FreeBSD. Is there anywhere that discusses the relative strengths and weaknesses of these different implementations, and why you might want to use one rather than another? -- John Lind john@starfire.MN.ORG