Re: Optimizing CentOS for gigabit firewall

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



On 12/18/2009 10:12 PM, Peter Serwe wrote:
> You can't patch the Berkeley Packet Filter into Linux.  Linux kernel doesn't
> support it.
> 
> and...
> 
> Despite a cacophonous chorus of replies directing you to the right tool for
> the job, you insist on sticking with Linux.
> 
> If you want to use the wrong tool for the job, by all means, use
> ipset/iptables - have a great time with it.  When it doesn't
> give you the performance you want, then you will probably go buy something
> else.
> 
> I don't care how you pretty up iptables and it's predecessor, ipchains, it's
> still a black eye on Linux comparatively speaking.
> 
> Berkeley invented TCP/IP, the Berkeley TCP/IP stack is implemented on just
> about every platform/OS combination there is.
> 
> Berkeley *is* networking.  And yes, the community around BSD are assholes,

(I'd like to say that all other BSD communities are very friendly; the
one exception is the OpenBSD guys. OTOH, they're sometimes more than on
the right track: E.g., when they say 'open source', they mean it.
GNU/Linux is as lame as the FreeBSD guys, as both allow tainted stuff,
as binary-only drivers (nVidia, e.g.). NetBSD is neither nor.

Timo

> but they are semi-entitled.  Their shit is way
> better documented than just about anything else in Open Source, including
> most things Linux.
> 
> Peter
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux