20 Mar
2021
20 Mar
'21
12:45
On 2021-03-20 6:11 a.m., Carlos E. R. wrote:
Those are the basic pros/cons I see it. Whichever you use, it just takes time (like anything else) to wade though the documentation and examples to the point where you are comfortable with what it is doing and how to configure it for your needs.
If you like using iptables, you should consider using nftables instead. I'm told it is easier to use and more powerful. And modern.
I also used to use IPTables. However, I moved to pfsense, because my Linux firewall couldn't handle DHCPv6-PD, which is needed for assigning an IPv6 prefix to a LAN. Pfsense does that well. It's built on FreeBSD, which uses packet filter.