[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Things pf can't do?

On May 20, 2004, at 6:19 AM, Greg Hennessy wrote:

On 19 May 2004 14:04:37 -0700, [email protected] (Jason Dixon) wrote:

On May 19, 2004, at 4:09 PM, Dave Anderson wrote:

pf is complicated enough that it definitely takes a while to wrap one's
mind around the whole thing.

Actually, it's a breath of fresh air compared to other filters I've worked with.

*cough* iptables *cough* LOL

Compared to working with iptables, PF is like this haiku:

A breath of fresh air,
floating on white rose petals,
eating strawberries.

Now I'm getting carried away:

Hartmeier codes now,
Henning knows not why it fails,
fails only for n00b.

Tables load my lists,
tarpit for the asshole spammer,
death to his mail store.

CARP due to Cisco,
redundant blessed packets,
licensed free for me.

Jason Dixon, RHCE
DixonGroup Consulting