> is anybody already deploying their firewalls based on netfilter/iptables?
> anyone planning to migrate from ipchains to netfilter?
>
already did.
> any compelling reasons to do so, aside from stateful inspection?
>
more control. like keeping live connections when changing rules or droping
connections. DDOS filters and more.
> any compelling reason NOT to do so?
>
complication.
> anyone want to share their horror stories on this?
>
hehehe. ask gino.
--------------------------------------
William Emmanuel S. Yu
Ateneo Cervini-Eliazo Networks (ACENT)
email : [EMAIL PROTECTED]
web : http://cersa.admu.edu.ph/
phone : 63(2)4266001-5925/5904
We just joined the civil hair patrol!
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
