[ previous ] [ next ] [ threads ]
 From:  Chris Buechler <cbuechler at gmail dot com>
 Cc:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall-dev] Re: [m0n0wall] The future
 Date:  Sat, 15 Oct 2005 15:04:10 -0400
On 10/15/05, dny <mail2dny at gmail dot com> wrote:
> - a way to limit max concurrent connection per ip.

this is possible with pf.  can also limit the number of states per
rule on any rule.  pf seems to be the only firewalling package in
consideration, so we'll see this.

> more radius user control/limits:

this is being worked on, see: http://doc.m0n0.ch/handbook/faq-extraradius.html

> even you said many time that this in only firewall, i really like to
> see more than firewall.
> like proxy server, antispam gateway, voip gateway, etc...

Some of this might be a possibility with Manuel's comment on multiple
feature set distributions, but the majority of us working on this
project firmly believe in doing things the "right way", i.e.
appropriate segregations of services.  Those are things we don't think
should run on a firewall, and don't anticipate that changing.

> coz, in small company with less than a dozen computers,
> to dedicate one pc to do only one task (one firewall, one for voip,
> one for mail, etc)
> might result in more servers than desktops...

This is why pfsense allows packages, but m0n0wall's current filesystem
design is not well suited for things like this.  It might change to
some extent, but likely not enough to allow most of those things.  If
you need all that, some other project is probably going to be your
only option in the foreseeable future.