This last point makes a lot of sense. What I want to do is learn.
I have two 'handycaps' right now, as far as I am concerned: Networking & programming. I want to learn networking & network security. I want to understand how people attack systems so that I can mitigate these attacks as much as possible. When I read unix man pages, they seem to assume I understand everything they talk about. Sure I can follow examples, but I want to know why these examples work, and what they are doing. I simply wish to learn more. Not sure if that exactly applies, but it is my motive for asking. If I am to learn about firewalling, where o I start? -Jeremy On Mon, Dec 15, 2014 at 9:22 PM, Justin Sherrill <[email protected]> wrote: > > A better question to ask may be "I want to do (this specific thing), > so what is the proper tool for it?" > > pf and ipfw both work, in that they can block or adjust network > traffic based on arbitrary rules. You'll never get an answer on > what's "better". > > I used to use ipfw and moved to pf for my local NAT. It was better > for me because it was a much simpler config. I had a specific use > case in that scenario. If you have a specific goal in mind, it is > easier to give feedback. > > On Mon, Dec 15, 2014 at 10:21 AM, Jeremy <[email protected]> wrote: > > Hi all, > > > > the Dragonfly handbook states pf is the recommended firewall, yet goes > on to > > say that the included pf is the older pf & that ipfw has features not yet > > available in pf. Then it goes on to give very detailed instructions for > > ipfw & points pf users to (seemingly) broken link as a manual. > > > > I find this misleading & confusing, as it suggests that ipfw may be a > more > > sensible way to go, despite stating that pf is "recommended". > > > > Could someone kindly rectify my understand here? > > > > Thank you. > > > > -Jeremy >
