[olug] ipf
Phil Brutsche
phil at giedi.obix.com
Tue Oct 23 04:00:31 UTC 2001
Chris Garrity wrote:
>
> I've not used iptables really, just ipf. Ipf uses a single rule-set
> per invocation, does port redirection in a heart-beat, does *stateful*
> filtering
netfilter also allows for really easy port redirection (one command, or
two if you haven't already allowed the incoming connection) and
statefull filtering.
As for rule-sets: all you need is a perl script :)
But it big question is: Can *BSD do policy routing (aka "advanced
routing")? Can *BSD do "bandwidth partitioning" or "priority queues"?
My research says no to the first, and not as flexibly as Linux to the
second.
Phil
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
For help contact olug-help at bstc.net - run by ezmlm
to unsubscribe, send mail to olug-unsubscribe at bstc.net
or `mail olug-unsubscribe at bstc.net < /dev/null`
(c)2001 OLUG http://www.olug.org
-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
More information about the OLUG
mailing list