From owner-freebsd-current@FreeBSD.ORG Fri Jun 1 15:31:12 2007 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1143116A46B for ; Fri, 1 Jun 2007 15:31:12 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.186]) by mx1.freebsd.org (Postfix) with ESMTP id 9EFEB13C489 for ; Fri, 1 Jun 2007 15:31:11 +0000 (UTC) (envelope-from max@love2party.net) Received: from [88.64.190.12] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu6) with ESMTP (Nemesis), id 0ML29c-1Hu8t13UvO-0002nZ; Fri, 01 Jun 2007 17:17:57 +0200 From: Max Laier Organization: FreeBSD To: freebsd-pf@freebsd.org Date: Fri, 1 Jun 2007 17:17:52 +0200 User-Agent: KMail/1.9.6 References: <20070601103549.GA22490@localhost.localdomain> <465FFFA4.1060706@delphij.net> In-Reply-To: <465FFFA4.1060706@delphij.net> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200706011717.54698.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18VOe2RTE2yAFYGZXWkT0lheDVW49sTtEoY5ab HlmNMDpnpsqEIQiv0iUr8o5xXG7T1IfqxiEZHOBqrF9INyRhzx YRtL5ndsKRZa93bvqBkzA== Cc: freebsd-current@freebsd.org, LI Xin Subject: Re: pf(4) status in 7.0-R X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jun 2007 15:31:12 -0000 [ moving this to the more specific list ] On Friday 01 June 2007, LI Xin wrote: > Stanislaw Halik wrote: > > Heya, > > > > Are there any plans to sync pf(4) before 7.0-R? OpenBSD has some neat > > stuff in it, including expiretable functionality, which would come in > > handy. > > Last time I have talked with Max (Cc'ed) about the issue, we finally > figured out that porting the whole stuff would need some > infrastructural changes to our routing code, which could be risky so we > wanted to avoid it at this stage (about 15 days before RELENG_7 code > freeze). On the other hand, some functionality (like the expiretable > feature) does not seem to touch a large part of kernel and might be > appropriate > RELENG_7(_0) candidate. > > Could you please enumerate some features that FreeBSD is currently lack > of and are considered "high priority" so we will be able to evaluate > whether to port? > > BTW. Patches are always welcome, as usual :-) So don't hesitate to > submit if you already did some work. ditto. I'd like to import a couple of features on a per-feature base rather than doing a complete import which isn't possible anymore due to SMP and routing code changes. Submit your list of features and I'll see what I can do this weekend. My list includes: - keep state and flags S/SA to default - improved state table purgeing (this is internal, but a huge benefit) - interface handling (groups etc.) - pfsync / pflog update (not 100% sure about these due to libpcap / tcpdump dependency) While at it, I might also introduce needed ABI breakage for netgraph interaction. Anything else? -- /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News