On Fri, Dec 18, 2009 at 12:06 PM, nate <centos at linuxpowered.net> wrote: > iptables makes a TERRIBLE firewall, use pf instead > > http://www.openbsd.org/faq/pf/index.html I whole heartedly with Nate on this! I spent a bunch of time looking at firewall solutions a year or two back, and PF was by far the easiest solution to manage and get up and running. There are also some killer tools for monitoring PF activity: http://prefetch.net/articles/monitoringpf.html - Ryan -- http://prefetch.net