On 10/13/05, Peter Curran <peter at closeconsultants dot com> wrote:
> If the core and GUI are separate, and the core is done using OO methods, it
> will actually be pretty easy to produce a version of the core that runs on
Not as easy as it might sound. pfsense started out with this
philosophy too. For the core firewalling, if we're using pf, sure the
rulesets are the same. But there's much more to it than that. PPPoE,
PPTP on WAN and PPTP server are done by mpd. That's FreeBSD-only.
Captive Portal is ipfw, and while it could be ported to anything else,
pfsense had it ported to pf and it proved more trouble than it was
worth. Traffic shaping may be different depending on platform, but if
it's all ALTQ, it won't matter. IPsec will differ between platforms,
with ipsec-tools on Free and Net, and isakmpd on Open.
I'm sure there are other things I'm missing, but making it run on all
3 isn't as easy as it might sound. Not to mention the developer
resources being reduced by being fragmented between multiple OS
In order to have the best possible end result, I believe we need to
focus on only one OS.