<div dir="ltr">For what it's worth, there is a lot of documentation on pf, arguably far more than there is ipfw due to it's levels of usage. With regard to pfsense, it gives you an easy to use webui where you don't really have to know all that much about writing rules or setting anything up, or how to install and configure the VPN aspects, and lets you use on old FreeBSD build with patching to that. DragonFly wouldn't provide you with the webui you're used to, but you would notice better performance.</div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Dec 15, 2014 at 1:04 PM, Jeremy <span dir="ltr"><<a href="mailto:dyre17@gmail.com" target="_blank">dyre17@gmail.com</a>></span> wrote:<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">That's yet another in favor of ipfw. I think I will try that out. I may even try converting my pfsense box to dragonfly. I learn better when applying things to real life situations.<div><br></div><div>Thanks all.</div><div><br></div><div>(BTW, that openbsd pf faq link may be too current for the version of pf in dragonfly. Just a hunch)</div><span class="HOEnZb"><font color="#888888"><div><br></div><div>-Jeremy</div></font></span></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Dec 15, 2014 at 3:49 PM, Ed <span dir="ltr"><<a href="mailto:edwardmx@gmx.us" target="_blank">edwardmx@gmx.us</a>></span> wrote:<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div>On Mon, 15 Dec 2014 10:21:01 -0500<br>
Jeremy <<a href="mailto:dyre17@gmail.com" target="_blank">dyre17@gmail.com</a>> wrote:<br>
<br>
> Hi all,<br>
><br>
> the Dragonfly handbook states pf is the recommended firewall, yet goes on<br>
> to say that the included pf is the older pf & that ipfw has features not<br>
> yet available in pf. Then it goes on to give very detailed instructions<br>
> for ipfw & points pf users to (seemingly) broken link as a manual.<br>
><br>
> I find this misleading & confusing, as it suggests that ipfw may be a more<br>
> sensible way to go, despite stating that pf is "recommended".<br>
><br>
> Could someone kindly rectify my understand here?<br>
><br>
> Thank you.<br>
><br>
> -Jeremy<br>
<br>
</div></div> I think this is the howto that goes to that missing link?<br>
<a href="http://www.openbsd.org/faq/pf/" target="_blank">http://www.openbsd.org/faq/pf/</a><br>
<br>
I would suggest to use ipfw because a good howto already exists on dragonfly<br>
website.<br>
<a href="http://www.dragonflybsd.org/docs/newhandbook/Security/#index15h3" target="_blank">http://www.dragonflybsd.org/docs/newhandbook/Security/#index15h3</a><br>
<span><font color="#888888"><br>
--<br>
Edward M <<a href="mailto:edwardmx@gmx.us" target="_blank">edwardmx@gmx.us</a>><br>
</font></span></blockquote></div></div>
</div></div></blockquote></div><br clear="all"><div><br></div>-- <br><div class="gmail_signature"><div dir="ltr">Sincerely,<br><br>Zachary Crownover<br></div></div>
</div>