From owner-freebsd-current@FreeBSD.ORG Fri Jun 1 16:22:36 2007 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id EF3E516A400; Fri, 1 Jun 2007 16:22:36 +0000 (UTC) (envelope-from max@love2party.net) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.177]) by mx1.freebsd.org (Postfix) with ESMTP id 84B8513C457; Fri, 1 Jun 2007 16:22:36 +0000 (UTC) (envelope-from max@love2party.net) Received: from [88.64.190.12] (helo=amd64.laiers.local) by mrelayeu.kundenserver.de (node=mrelayeu7) with ESMTP (Nemesis), id 0ML2xA-1Hu9ta0SKN-0000vl; Fri, 01 Jun 2007 18:22:34 +0200 From: Max Laier Organization: FreeBSD To: "Greg Hennessy" Date: Fri, 1 Jun 2007 18:22:31 +0200 User-Agent: KMail/1.9.6 References: <20070601103549.GA22490@localhost.localdomain> <200706011717.54698.max@love2party.net> <002801c7a467$d70da190$8528e4b0$@Hennessy@nviz.net> In-Reply-To: <002801c7a467$d70da190$8528e4b0$@Hennessy@nviz.net> X-Face: ,,8R(x[kmU]tKN@>gtH1yQE4aslGdu+2]; R]*pL,U>^H?)gW@49@wdJ`H<=?utf-8?q?=25=7D*=5FBD=0A=09U=5For=3D=5CmOZf764=26nYj=3DJYbR1PW0ud?=>|!~,,CPC.1-D$FG@0h3#'5"k{V]a~.<=?utf-8?q?mZ=7D44=23Se=7Em=0A=09Fe=7E=5C=5DX5B=5D=5Fxj?=(ykz9QKMw_l0C2AQ]}Ym8)fU MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200706011822.33043.max@love2party.net> X-Provags-ID: V01U2FsdGVkX18hwusLaMnRZmFlIMYzj160kuR69ZLtljyZ+8O G5fxUdHW+bCDITKYR4k/T93VM1FAHoK4kNzYBr5z6iuVxP8j/K GwozcweIbJqoANt3Uqouw== Cc: freebsd-current@freebsd.org, freebsd-pf@freebsd.org Subject: Re: pf(4) status in 7.0-R X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jun 2007 16:22:37 -0000 On Friday 01 June 2007, Greg Hennessy wrote: > > ditto. I'd like to import a couple of features on a per-feature base > > rather than doing a complete import which isn't possible anymore due > > to SMP and routing code changes. > > Is the inability to completely sync PF with the latest OpenBSD release > cast in stone for here on, or it an issue of resource to do ? > > Just curious in light of recent PF improvements as detailed here > > http://www.undeadly.org/cgi?action=article&sid=20070528213858 This is a completely unrelated issue really. Is debateable if it is good practice to put all that information into the pkthdr, but the speed improvement is something for sure. It remains to be seen if FreeBSD's mbuf tags perform as badly as OpenBSD's and - if they do - what can be done about that. One thing to keep in mind, however, pf is not the one and only Firewall in FreeBSD and there are *many* other places that use mbuf tags, too. I would rather look for a more general optimization of the mbuf tag framework - if required - , than gluttering the m_pkthdr with all fields one can think of (pf, ipfw, ipf, vlans, ipsec, altq ...) -- /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News