I recently retired my trusty IPFilter / Internet gateway machine after 7
years of faithful service. I had been running ipf 3.x under Solaris 9,
but recently moved to new hardware running Solaris 10 6/06 and the
bundled ipf that comes with it.
Although I've been a faithful ipf user for many many years, my
experience with the Sun-bundled release is less than stellar,
unfortunately. One of my key requirements is the ability to form an
IPSEC VPN tunnel from my home network into work. This seems to cause my
ipf box to panic every time.
Wanting to retain support for Sun's version, I've held off moving to the
open-source version in the hope that a fix would come from Sun. After
waiting for several months, however, I still don't see a patch for the
issue. So, I think it's time to leap away from Sun's ipf and move to the
open-source release.
Question: what is the version of ipf/pfil I should be targetting for a
*reliable* system? I'm not so concerned with new features (3.x had
everything I need) but stability is of prime importance.
Thanks,
Dave.
- IPFilter on Solaris 10 Dave Ockwell-Jenner
-
