On 8 Sep 2005, at 15:18, Stephan A. Rickauer wrote: >> I had similar problem few months ago. In my case I used fwbuilder to >> check how my netfilter rules looks in pf syntax. It was very helpful. > > Good that you mention that. I also use fwbuilder to manage my rule > sets with netfilter. I thought I could simply 'compile' a pf rule > set for migration but that left me with a broken one. Investigating > the issue revealed a fundamental difference in the way pf and > netfilter work. Now I am trying to understand it ;)
I came across the problem from the other direction. I found that I needed to learn netfilter for use on a FreeBSD box. I grappled with it for a couple of hours before finding out that it was quicker and easier to build pf into the kernel and use that under FreeBSD. 2 hours of faffing versus a 10 minute kernel build. Nice. Gaby -- Junkets for bunterish lickspittles since 1998! [EMAIL PROTECTED] http://weblog.vanhegan.net
