OpenBSD people ... I have a question as I am preparing an article for the next episode about OpenBSD in general and PF...
Just exactly/approx. how good of a firewall You can build out of OpenBSD? Should I simply think of pFsense or it can go way beyond that (more secure, more features, IDS/IPS)?
@viktormadarasz Sorry, never tried, so I wouldn't know.
You can certainly install any of the common IDS/IPS engines, but I have no idea if any of them has infrastructure to be meshed into pf rulesets (except for fail2ban, which I have been using successfully on OpenBSD).
"I appreciate SDF but it's a general-purpose server and the name doesn't make it obvious that it's about art." - Eugen Rochko