From owner-freebsd-current@FreeBSD.ORG Fri Jun 1 14:09:46 2007 Return-Path: X-Original-To: freebsd-current@FreeBSD.ORG Delivered-To: freebsd-current@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E6CB416A400 for ; Fri, 1 Jun 2007 14:09:46 +0000 (UTC) (envelope-from hugo@barafranca.com) Received: from mail.barafranca.com (mail.barafranca.com [67.19.101.164]) by mx1.freebsd.org (Postfix) with ESMTP id C605C13C4BB for ; Fri, 1 Jun 2007 14:09:46 +0000 (UTC) (envelope-from hugo@barafranca.com) Received: from localhost (localhost [127.0.0.1]) by mail.barafranca.com (Postfix) with ESMTP id 0747EC448F; Fri, 1 Jun 2007 14:42:31 +0000 (UTC) Received: from mail.barafranca.com ([67.19.101.164]) by localhost (mail.barafranca.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 00740-09; Fri, 1 Jun 2007 14:41:51 +0000 (UTC) Received: from nexus.bsdlan.org (a213-22-26-49.cpe.netcabo.pt [213.22.26.49]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.barafranca.com (Postfix) with ESMTP id E136CC4C85; Fri, 1 Jun 2007 14:41:50 +0000 (UTC) Message-ID: <466028C8.2060105@barafranca.com> Date: Fri, 01 Jun 2007 15:10:16 +0100 From: Hugo Silva User-Agent: Thunderbird 2.0.0.0 (X11/20070531) MIME-Version: 1.0 To: LI Xin , freebsd-current@FreeBSD.ORG References: <20070601103549.GA22490@localhost.localdomain> <465FFFA4.1060706@delphij.net> In-Reply-To: <465FFFA4.1060706@delphij.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at barafranca.com X-Spam-Status: No, score=0 tagged_above=-1 required=4 tests=[none] X-Spam-Score: 0 X-Spam-Level: Cc: Subject: Re: pf(4) status in 7.0-R X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jun 2007 14:09:47 -0000 LI Xin wrote: > Stanislaw Halik wrote: > >> Heya, >> >> Are there any plans to sync pf(4) before 7.0-R? OpenBSD has some neat >> stuff in it, including expiretable functionality, which would come in >> handy. >> > > Last time I have talked with Max (Cc'ed) about the issue, we finally > figured out that porting the whole stuff would need some infrastructural > changes to our routing code, which could be risky so we wanted to avoid > it at this stage (about 15 days before RELENG_7 code freeze). On the > other hand, some functionality (like the expiretable feature) does not > seem to touch a large part of kernel and might be appropriate > RELENG_7(_0) candidate. > > Could you please enumerate some features that FreeBSD is currently lack > of and are considered "high priority" so we will be able to evaluate > whether to port? > > BTW. Patches are always welcome, as usual :-) So don't hesitate to > submit if you already did some work. > > Cheers, > http://undeadly.org/cgi?action=article&sid=20070424020008 pflog(4) is clonable After creating additional pflog interfaces (using ifconfig), rules can specify which pflog interface to use: "pass out log to pflog1 on $ext_if to port smtp". This will log traffic sent to SMTP servers to a different log interface than the default. pflogd(8) and spamlogd(8) (spamlogd -l pflog1) can now be told which pflog interface to work with. is the most interesting for my usual workloads :) Best regards, Hugo