Firewalling is one of those things that I have yet a lot to learn about, but
if the only thing (Open)?BSD firewalls have over Linux ones is that they are
stateful, then any argument with this is pathetic. Linux has had stateful
firewalling since the implementation of iptables. That AFAICT is the main
difference between ipchains and iptables.
That's a bit like comparing Nissan to Ford using the latest Nissan, and a
Model T Ford.
The one thing I would say about OpenBSD firewalls is that PF is userland
based as opposed to the kernel based netfilter? It's a matter of opinion
whether that's better or worse.
Having that said, WRT firewalls I'm no expert.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!