David Alanis wrote:
Being I am a newcomer to freeBSD, on my first install google turned up
a how to for getting my box on the Internet as a firewall/DHCP/DNS
server. Since, I've been learning the packet filtering program (pf).
Everytime I read a question on ipfw I quickly get confused.
What are the major advantages one over the other? I hope not to sound
biased but pf seems more user friendly, easier to implement, and less
verbose?
ipnat can handle 80+Mbps on a 2Ghz single core CPU. ipfw w/ natd will
crumple around 10Mbps on the same box. There is one difference. :)
It has to do with the fact that ipnat is kernel based while DIVERT uses
the userland natd program.
(I use ipnat as a synonym for pf)
More info:
http://lists.freebsd.org/pipermail/freebsd-ipfw/2004-December/001583.html
Rudy
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
