I installed succesfully several 7.2 SNF (6 installations): customers are happy about the pretty interface (more user-friendly then Cisco IOS) but not at all about performance in some situations as ftp and pop3. So I tested new SNF packages and can say: no more latencies in ftp and pop3 protocols. Great! 2.4 is a good features kernel. The interface is the same (pretty) but a lot of new features are welcome: vpn, tos, dmz network. Shorewall - instead of Bastille-Firewall - seems to work great, but I encoured some bugs: If I try to allow irc traffic (tcp 6667) with 'Add Simple rule' shorewall fails something and all traffic is rejected. I added the rule with 'Add custom rule' and everything worked. The only difference in the interface was the port field that was ircd with 'Add Simple rule', and 6667 with 'Add custom rule': so I thing the error is in some xml script. Another bug is transparent proxy: I can have it working only writing by myself iptables rules, because if I try throught the interface the proxy traffic is denied for some reason I did not investigate. The nect days I planned to try TOS and VPN features, but now I have 2 questions: 1) Is a mistake of mine that Squid do not work ? 2) How long time for a stable release (I see help pages are not ready, so I think SNF is still under developing) Regards, Miguel Beccari
