From owner-freebsd-questions@FreeBSD.ORG Mon Mar 14 15:47:04 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B432716A4CE for ; Mon, 14 Mar 2005 15:47:04 +0000 (GMT) Received: from limicola.its.uu.se (limicola.its.UU.SE [130.238.7.33]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8D8B643D2D for ; Mon, 14 Mar 2005 15:47:03 +0000 (GMT) (envelope-from ante@Update.UU.SE) Received: by limicola.its.uu.se (Postfix, from userid 205) id 4135F4892; Mon, 14 Mar 2005 16:47:01 +0100 (MEZ) Received: from limicola.its.uu.se(127.0.0.1) by limicola.its.uu.se via virus-scan id s3166; Mon, 14 Mar 05 16:47:00 +0100 Received: from Psilocybe.Update.UU.SE (Psilocybe.Update.UU.SE [130.238.19.25]) by limicola.its.uu.se (Postfix) with ESMTP id D16DC4892 for ; Mon, 14 Mar 2005 16:47:00 +0100 (MEZ) Received: by Psilocybe.Update.UU.SE (Postfix, from userid 30086) id C964A38012; Mon, 14 Mar 2005 16:47:00 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by Psilocybe.Update.UU.SE (Postfix) with ESMTP id B9F345C002 for ; Mon, 14 Mar 2005 16:47:00 +0100 (CET) Date: Mon, 14 Mar 2005 16:47:00 +0100 (CET) From: Andreas Davour Cc: freebsd-questions@freebsd.org In-Reply-To: <20050314153532.GA825@Alex.lan> Message-ID: References: <42326F4D.70008@daleco.biz> <200503120435.j2C4ZDr89213@fat_man.ascendency.net> <20050313112025.GI18080@alzatex.com> <20050314153532.GA825@Alex.lan> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: IPFW or pf? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Mar 2005 15:47:04 -0000 I have read the handbook about firewalls, and compiled my kernel without switching on any explicit support for pf. Now, when I ran the mergemaster it suddenly found a lot of references to pf in my startup scripts. Is pf some kind of mandatory part of the base system these days? I thought it was some kind of alternative to IPFW, but now I'm no longer so sure. Can someone tell me if it's ok to just use IPFW on my STABLE system, or is there some other knobs in the kernelconfig I should toggle to turn off pf support? /Andreas -- A: Because it fouls the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail?