Fwd: Re: Things pf can't do?

2004-05-20 Thread Jeff Simmons 
On May 20, 2004, at 6:19 AM, Greg Hennessy wrote:
>> Actually, it's a breath of fresh air compared to other filters I've
>> worked with.
>
> *cough* iptables *cough*  LOL

One of Linus' stated goals for the 2.7 kernel is to improve iptables so that 
it's up to the level of OpenBSD's pf.

Lotsa luck, boys.

-- 
Jeff Simmons   [EMAIL PROTECTED]
 Simmons Consulting - Network Engineering, Administration, Security
"You guys, I don't hear any noise.  Are you sure you're doing it right?"
- My Life With The Thrill Kill Kult--- Begin Message ---
On May 20, 2004, at 6:19 AM, Greg Hennessy wrote:
On 19 May 2004 14:04:37 -0700, [EMAIL PROTECTED] (Jason Dixon) 
wrote:

On May 19, 2004, at 4:09 PM, Dave Anderson wrote:
pf is complicated enough that it definitely takes a while to wrap 
one's
mind around the whole thing.
Actually, it's a breath of fresh air compared to other filters I've
worked with.
*cough* iptables *cough*  LOL
Compared to working with iptables, PF is like this haiku:
A breath of fresh air,
floating on white rose petals,
eating strawberries.
Now I'm getting carried away:
Hartmeier codes now,
Henning knows not why it fails,
fails only for n00b.
Tables load my lists,
tarpit for the asshole spammer,
death to his mail store.
CARP due to Cisco,
redundant blessed packets,
licensed free for me.
--
Jason Dixon, RHCE
DixonGroup Consulting
http://www.dixongroup.net
--- End Message ---

Re: Fwd: Re: Things pf can't do?

2004-05-21 Thread Greg Hennessy 
On 20 May 2004 13:42:50 -0700, [EMAIL PROTECTED] (Jeff Simmons)
wrote:

>On May 20, 2004, at 6:19 AM, Greg Hennessy wrote:
>>> Actually, it's a breath of fresh air compared to other filters I've
>>> worked with.
>>
>> *cough* iptables *cough*  LOL
>
>One of Linus' stated goals for the 2.7 kernel is to improve iptables so that 
>it's up to the level of OpenBSD's pf.

I'll believe it when I see it.  Linux had an excellent firewall in IPF, but
the NiH 31337s didnt like that. 

>
>Lotsa luck, boys.

Quite, design by commitee rarely if ever gets user interfaces right. 


greg

 
-- 
"vying with Platt for the largest gap
between capability and self perception"

Re: Fwd: Re: Things pf can't do?

2004-09-03 Thread Ed White 
On Thursday 20 May 2004 22:05, Jeff Simmons wrote:
> >> Actually, it's a breath of fresh air compared to other filters I've
> >> worked with.
> >
> > *cough* iptables *cough*  LOL
>
> One of Linus' stated goals for the 2.7 kernel is to improve iptables so
> that it's up to the level of OpenBSD's pf.


Jeff, could you tell me some url to find that Linus's mail ?

Thanks.


Ed

Re: Fwd: Re: Things pf can't do?

2004-09-04 Thread Sean 
Ed White wrote:
>>One of Linus' stated goals for the 2.7 kernel is to improve iptables so
>>that it's up to the level of OpenBSD's pf.
> 
> 
> Jeff, could you tell me some url to find that Linus's mail ?


[EMAIL PROTECTED]