tech-net archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
npf vs. pf
I have been having issues with pf. See "pf add not working" in
netbsd-users for details. Basically I have created a persistent table
and dynamically add and delete to/from it based on my intrusion
system. Everything seems to work but even with IPs in the table as
shown by pfctl it seems that people still get through. Something weird
is going on. I wonder if it is pf itself.
I asked if npf would have a good shot at fixing this issue but no one
has replied to that question. Anyone here have any thoughts on that?
Is npf stable enough to consider replacing pf on a production server?
Thanks.
--
D'Arcy J.M. Cain <darcy%NetBSD.org@localhost>
http://www.NetBSD.org/ IM:darcy%Vex.Net@localhost
Home |
Main Index |
Thread Index |
Old Index