zlacker

[parent] [thread] 4 comments
1. bingo-+(OP)[view] [source] 2025-12-18 07:33:43
Coming from FreeBSD and pf, all Linux firewalls I’ve tried feels clunky _at best_ UX-wise.

I’d love a Linux firewall configured with a sane config file and I think BSD really nailed it. It’s easy to configure and still human readable, even for more advanced firewall gateway setups with many interfaces/zones.

A have no doubt that Linux can do all the same stuff feature-wise, but oh god the UX :/

replies(3): >>ptman+q5 >>Hendri+h6 >>adrian+wJ
2. ptman+q5[view] [source] 2025-12-18 08:32:37
>>bingo-+(OP)
nftables is configured like that https://wiki.nftables.org/wiki-nftables/index.php/Simple_rul...
3. Hendri+h6[view] [source] 2025-12-18 08:41:23
>>bingo-+(OP)
Have you tried nftables? It is so much nicer than iptables.
replies(1): >>bingo-+0N1
4. adrian+wJ[view] [source] 2025-12-18 13:57:24
>>bingo-+(OP)
I completely agree.

I have been using for many decades both Linux and FreeBSD, on many kinds of computers.

When comparing Linux with FreeBSD, I probably do not find anything more annoying on Linux than its networking configuration tools.

While I am using Linux on my laptops and desktops and on some servers with computational purposes, on the servers that host networking services I much prefer FreeBSD, for the ease of administration.

◧◩
5. bingo-+0N1[view] [source] [discussion] 2025-12-18 18:44:27
>>Hendri+h6
Yeah, I'm already using nftables and I agree that it's better than eg. iptables (or the numerous frontends for iptables) and probably the best bet we have at this point - but honestly, it's still far from the UX I get from pf - unfortunately :/
[go to top]