On 29 Aug 2004 08:01:40 -0700, [EMAIL PROTECTED] (Christopher Keeley) wrote:
>Does anyone think 'pattern matching' on packets values would be >a useful addition to pf' current capabilities? As with the equivalent on iptables its a crap idea. Using tools such as snortsam one generate rules to dynamically filter based on proper L7 inspection rather than arsing about on a packet by packet basis. greg -- Felicitations, malefactors! I am endeavoring to misappropriate the formulary for the preparation of affordable comestibles. Who will join me?!
