Date: Wed, 20 Jul 2005 23:47:07 +0200 From: Jeremie Le Hen <jeremie@le-hen.org> To: NetAdmin <daemon@foxchat.net> Cc: freebsd-ipfw@freebsd.org Subject: Re: Most wanted packet filter Message-ID: <20050720214706.GY39292@obiwan.tataz.chchile.org> In-Reply-To: <1121880253.53529.5.camel@foxdaemon.com> References: <42267.62.2.21.164.1121863057.squirrel@www.gwch.net> <200507201533.53008.max@love2party.net> <1121880253.53529.5.camel@foxdaemon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Mark, > How difficult is it to switch from IPFW2 to PF or use the two in > conjunction with one another and are there any good URL "how to" sites > with that information? The syntax is really different, nothing common. But none is difficult. It is possible to use both, but this makes maintainability more complex, IMO. IIRC the precedence of each firewall depends on the order which they registered on PFIL_HOOKS. The trick to force certain order is to compile the first one in the kernel and the second on as a module. Please correct me if I'm wrong. Regards, -- Jeremie Le Hen < jeremie at le-hen dot org >< ttz at chchile dot org >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050720214706.GY39292>