View Single Post
  #5   (View Single Post)  
Old 10th June 2008
halber_mensch's Avatar
halber_mensch halber_mensch is offline
Real Name: halber mensch
Port Guard
 
Join Date: Jun 2008
Location: Sapulpa, OK
Posts: 14
Default

iptables has a confusing syntax to me, and it's overly complicated. pf actually has a well defined language for declaring firewall rules that's pretty intuitive.

addendum:
pf's in-kernel NAT also sets it apart from ipfw with its less reliable userland NAT daemon
__________________
perl -e "eval pack(q{H*}, join q{},qw{7072696e74207061636b28717b482a7d2c717b34393 23036333631366532303666366536633739323036313733373 33735366436353230373936663735323036353738373036353 63337343635363432303734363836393733323037343666323 03632363532303631323036633639373437343663363532303 66436663732363532303635366537343635373237343631363 93665363936653637326530617d293b})"

Last edited by halber_mensch; 10th June 2008 at 03:15 PM.
Reply With Quote