Date: Thu, 15 Aug 1996 09:02:33 +1000 (EST) From: "Daniel O'Callaghan" <danny@panda.hilink.com.au> To: hackers@freebsd.org Subject: Re: ipfw vs ipfilter? Message-ID: <Pine.BSF.3.91.960815085157.6553D-100000@panda.hilink.com.au> In-Reply-To: <199608142231.PAA00154@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Well, it looks like I'm the lone voice in favour of ipfw, for a specific purpose, anyway. I much prefer Poul-Henning's (partial)rewrite of ipfw over Ugen's syntax, but am in the process of converting a firewall to ipfilter from Ugen's ipfw (FreeBSD 2.1.0). There are a couple of things which I prefer in ipfw-current over ipfilter: * The ability to number each rule and insert rules into the middle of the rule table without the need for flush/re-install. * The clear accounting details available which are listed by rule number. I'm currently using the latter to do accounting for my ISP business. Because each rule is numbered, it is easy (in perl) to relate rule numbers to customers. I'll confess that I have not investigated the ipfilter accounting yet, but I *do* like Poul-Henning's rule numbers in ipfw. Any chance of having numbered rules, Darren? Danny
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.960815085157.6553D-100000>