From owner-freebsd-current@FreeBSD.ORG Wed Feb 25 20:30:04 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D5D1316A4CE for ; Wed, 25 Feb 2004 20:30:04 -0800 (PST) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.189]) by mx1.FreeBSD.org (Postfix) with ESMTP id A09EF43D31 for ; Wed, 25 Feb 2004 20:30:04 -0800 (PST) (envelope-from mlaier@vampire.homelinux.org) Received: from [212.227.126.179] (helo=mrelayng.kundenserver.de) by moutng.kundenserver.de with esmtp (Exim 3.35 #1) id 1AwD9v-00021b-00 for current@freebsd.org; Thu, 26 Feb 2004 05:30:03 +0100 Received: from [80.131.150.236] (helo=vampire.homelinux.org) by mrelayng.kundenserver.de with asmtp (Exim 3.35 #1) id 1AwD9v-00080H-00 for current@freebsd.org; Thu, 26 Feb 2004 05:30:03 +0100 Received: (qmail 68459 invoked by uid 1001); 26 Feb 2004 04:34:18 -0000 Date: Thu, 26 Feb 2004 05:34:18 +0100 From: Max Laier To: current@freebsd.org Message-ID: <20040226043418.GA68438@router.laiers.local> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="UugvWAfsgieZRqgk" Content-Disposition: inline User-Agent: Mutt/1.4.1i X-Provags-ID: kundenserver.de abuse@kundenserver.de auth:e28873fbe4dbe612ce62ab869898ff08 cc: hackers@freebsd.org cc: net@freebsd.org Subject: HEADS UP: pf import X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Feb 2004 04:30:05 -0000 --UugvWAfsgieZRqgk Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi, we started importing OpenBSD's packet filter (pf) from it's port=20 (security/pf). The kernel parts are done, though not linked to any=20 automatic build. If you want to build it already, you can build from the=20 corresponding module directories:=20 sys/modules/{pf, pflog, pfsync} Make sure to install new and modified headers. User of the port should hold off until this is done. The port will no=20 longer build with the new headers installed! There is no userland in the=20 tree, yet! This brings pf from OpenBSD 3.4 with the complete OpenBSD 3.4 function=20 set. It was tested from the port for a long time now and brings some=20 features that were not available to FreeBSD before. We have reports from=20 people successfully running the port (and a preliminarily version of the=20 changes committed now) on production-use firewalls and servers. To get an idea of pf's power I suggest reading the OpenBSD FAQ about it: http://www.openbsd.org/faq/pf/index.html or if you prefer a summarize, check out the port status report: http://www.freebsd.org/news/status/report-oct-2003-dec-2003.html#Porting-Op= enBSD's-pf --=20 Best regards, | max@love2party.net Max Laier | ICQ #67774661 http://pf4freebsd.love2party.net/ | mlaier@EFnet --UugvWAfsgieZRqgk Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAPXdGXyyEoT62BG0RAoF+AJ0YUaNIYEP607L6yUs8wrT3tIZjnACfd0Mp r8eAqQzpi95FnnR+g9RErf8= =pV+Y -----END PGP SIGNATURE----- --UugvWAfsgieZRqgk--