> Exactly. I have often wondered about this as well. What is the advantage of > ripping out IPF to be on the bleeding edge? I'd really like to know. > ... > Why risk your production FW?
If memory serves me in our case the stock ipfilter crashed when our application actually tried sending data through an IPSec tunnel. There were also various other problems. Switching to IPF 4.1.3 and spending time fixing various issues produced a solution that actually works in our environment where the stock solution did not. It all depends on what you need to do. If your needs are met by the stock solution, then by all means stick with it. -- John ------------------------------------------------------------------------- | Feith Systems | Voice: 1-215-646-8000 | Email: [EMAIL PROTECTED] | | John Wehle | Fax: 1-215-540-5495 | | -------------------------------------------------------------------------
