@lanefu @pearl I mean, I'd rather try to use #ipFire but sadly I've yet to see some #Linux-based #Networking distro / setup that comes close to #pfSense / #OPNsense...
But that's me being "too lazy" to do #iptables...
@[email protected] @[email protected] @[email protected] *From scratch* should (and would) be possible if said #configuration isn't just proprietary bs but actually following a documented syntax akin to any proper #configuration. - I assume this is *NOT* the case cuz otherwise you'd not offer said job. Not to mention #vendors prefer #siloing amd #Enshittifying products, so having #InterchangeableFormats goes against their primary #commercial interests. - We can see this peak with #Cisco & #Microsoft pushing both proprietary #SingleVendor & #SingleProvider standards, #patenting the implementation (i.e. #VRRP) and sueing everyone who wants to implement them (i.e. #CARP had to do a shitton of redundant work!) whilst also refusing to follow #Standards (i.e. #Posix [new line](https://en.m.wikipedia.org/wiki/Newline) ) & #Conventions (I've seen literal CISCO <=> #IETF dictionaries!)... Sadly it's more #unrealistic to see such standardization to happen than #YAML being replaced [by](https://github.com/greyhat-academy/YADL) #YADL...
@alterelefant @HauntedOwlbear OFC that's also a common strategy, as is using hardware crypto accelerators to optimize cryptographic throughput…
And since that feature only requires being able to shove two ports WAN & LAN side and have one ethernet cable & interface per machine to link them together, it's even possible to setup in tight spaces with a narrow thermal and energy envelope to work in (I.e. with some #amd64-based #SBC's stuck on a DIN-Rail.)…
Kevin Karhan 
Peter N. M. Hansteen