[CentOS] iptables ... *BSD pf ... pfSense

Tue Dec 22 19:01:39 UTC 2009
Timo Schoeler <timo.schoeler at riscworks.net>

On 12/22/2009 07:22 PM, Götz Reinicke - IT Koordinator wrote:
> Hi,
> 
> I followed the "Optimizing CentOS for gigabit firewall" posting and as 
> some posters wrote pf is soo sooo ssooooo mutch faster, I was thinking 
> to give it a try. But I'm not familier to BSD so I was looking for some 
> tools and found "pfsense"
> 
> http://www.pfsense.org/
> 
> "pfSense is a free, open source customized distribution of FreeBSD 
> tailored for use as a firewall and router"
> 
> Has any of the firewall guys on the list ever tested this distri?
> 
> What do you think?

pf is not a native FreeBSD thingie... you won't get the latest features,
tweaks, and optimizations there.

Timo

> Right now we run a iptables Shorewall system and had no problems so far, 
> but having a "managed" firewall distri which rocks whould be an alternative.
> 
> Cheers,
> 
> 	Götz