From owner-freebsd-current@FreeBSD.ORG Fri Jun 1 13:18:39 2007 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 481D316A41F for ; Fri, 1 Jun 2007 13:18:39 +0000 (UTC) (envelope-from sthalik@tehran.lain.pl) Received: from ananke.insane.pl (ananke.insane.pl [88.198.47.232]) by mx1.freebsd.org (Postfix) with ESMTP id 0D08213C469 for ; Fri, 1 Jun 2007 13:18:37 +0000 (UTC) (envelope-from sthalik@tehran.lain.pl) Received: from c182-247.icpnet.pl ([85.221.182.247] helo=enkidu.local ident=Debian-exim) from Debian-exim by ananke.insane.pl with esmtpsa (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (envelope-from ) id 1Hu6l1-00080o-Mf for freebsd-current@freebsd.org; Fri, 01 Jun 2007 15:01:31 +0200 Received: from sthalik by enkidu.local with local (Exim 4.63) (envelope-from ) id 1Hu6kv-0006KN-Ud for freebsd-current@freebsd.org; Fri, 01 Jun 2007 15:01:26 +0200 Date: Fri, 1 Jun 2007 15:01:25 +0200 From: Stanislaw Halik To: freebsd-current@freebsd.org Message-ID: <20070601130125.GA23695@localhost.localdomain> Mail-Followup-To: freebsd-current@freebsd.org References: <20070601103549.GA22490@localhost.localdomain> <465FFFA4.1060706@delphij.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <465FFFA4.1060706@delphij.net> User-Agent: Mutt/1.5.13 (2006-08-11) X-User: sthalik Subject: Re: pf(4) status in 7.0-R X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jun 2007 13:18:39 -0000 On Fri, Jun 01, 2007, LI Xin wrote: >> Are there any plans to sync pf(4) before 7.0-R? OpenBSD has some neat >> stuff in it, including expiretable functionality, which would come in >> handy. > Last time I have talked with Max (Cc'ed) about the issue, we finally > figured out that porting the whole stuff would need some infrastructural > changes to our routing code, which could be risky so we wanted to avoid > it at this stage (about 15 days before RELENG_7 code freeze). On the > other hand, some functionality (like the expiretable feature) does not > seem to touch a large part of kernel and might be appropriate > RELENG_7(_0) candidate. > Could you please enumerate some features that FreeBSD is currently lack > of and are considered "high priority" so we will be able to evaluate > whether to port? >From what I've spotted on the OpenBSD Journal: - http://marc.info/?l=openbsd-cvs&m=118037274607974&w=2 Claims a large speedup to pf. I'm not entirely sure if it's applicable to FreeBSD as well. - http://marc.info/?l=openbsd-cvs&m=118040004621784&w=2 A 10% speedup. This one should apply to FreeBSD as well. - http://marc.info/?l=openbsd-cvs&m=116915376827511&w=2 Userland portion of the expiretable patch. I'm unable to find the kernel-land one, though. `expiretable' makes `overload' and any other kind of automated blacklisting a lot more useful. Thanks in advance for importing any of these. > BTW. Patches are always welcome, as usual :-) So don't hesitate to > submit if you already did some work. I apologize for not being able to be of any help, but I'm no kernel developer. -- Whenever you find that you are on the side of the majority, it is time to reform. -- Mark Twain