Quote:
Originally Posted by Oko
Yes it can just like with FreeBSD IPFW (used also by OS X) on which IPtables were originally based. There are some serious differences though. I have seen only one or two very serious documents on the Internet written by very competent people experienced with both tools. The first notable difference is that IPtables much like it father IPFW is an ugly script which needs to be loaded first. By comparison PF language is beautifully simple.
|
Just to clarify something. You can use IPFW pretty much the same way as PF, with a single rules file. You do not have to use it like a script, constantly calling the ipfw binary to load individual rules.