Re: [Full-Disclosure] OpenBSD 'pf' port (was FreeBSD heap to Linux)
From: Filipe A. (incognito_at_patria.ath.cx)
To: Full-Disclosure <firstname.lastname@example.org> Date: Thu, 29 Jan 2004 17:44:23 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Jeremiah Cornelius wrote:
|>>What could you get from pf that you couldn't get from iptables (I've
|>>not played with the little devil yet)?
| Human-readable syntax.
| Lucid syntax is an indispensable security measure. Errors should be
| and obvious!
~ Apart from such subjective feature could you point us to any real
reference/test regarding PF vs netfilter? I've used both. I don't have a
problem with iptables syntax which I find more "objective" than PF's.
But I'd like to read an unbiased comparative article on performance and
detailed features that would clearly state the advantages of either one.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
Full-Disclosure - We believe in it.