On 2021-03-20 6:11 a.m., Carlos E. R. wrote:
Those are the
basic pros/cons I see it. Whichever you use, it just
time (like anything else) to wade though the documentation and
examples to the
point where you are comfortable with what it is doing and how to
for your needs.
If you like using iptables, you should consider using nftables
instead. I'm told it is easier to use and more powerful. And modern.
I also used to use IPTables. However, I moved to pfsense, because my
Linux firewall couldn't handle DHCPv6-PD, which is needed for assigning
an IPv6 prefix to a LAN. Pfsense does that well. It's built on
FreeBSD, which uses packet filter.