Follow

OpenBSD nostalgia 

I remember way back (early 2000s) when I was running IPCop as my firewall. It was decent but being on cable the ARP tables alone got so huge on cable internet that the entire OS performance would grind to a halt.

One day I decided to try OpenBSD as my firewall (I really had no OpenBSD experience prior). Using the PF FAQ I configured PF and took a chance and switched the cables over to the OpenBSD box.

And things, just worked. The only issue I had was FTP which was a simple fix (and right on the FAQ). But PF was so easy to use and the PF FAQ so well written that even someone like me who only understood the basics of networking, port forwarding and NAT, could write a config file for PF and have it just work.

OpenBSD nostalgia 

@devrandom I'll be taking this journey soon. I'm moving apartments in May/June and plan on swapping out my Cisco 2911 router for my OpenBSD PF firewall. I tested it out on my lab network and it seems to work but still nervous as I'm used to Cisco IOS but I'm already having performance issues with the Cisco router since upgrading my Comcast connection to 300 Mbps (throughput maxes out at like 250Mbps). New place has FIOS so I know it won't be able to keep up with FIOS

OpenBSD nostalgia 

@devrandom
That is, almost to the letter, my same experience. IPCop and all.. how funny

OpenBSD nostalgia 

@paulgatling that’s awesome! And wasn’t it almost mind-blowing how much simpler and better performing OpenBSD was in comparison?

OpenBSD nostalgia 

@devrandom
I was a little surprised at how easy the rules came together. I remember trying to translate from ipchains to pf.conf. But it Just Worked ® and I never looked back.

OpenBSD nostalgia 

@devrandom Yeah. pf is amazing.

Sign in to participate in the conversation
hackers.town

A bunch of technomancers in the fediverse. Keep it fairly clean please. This arcology is for all who wash up upon it's digital shore.