From owner-freebsd-security@FreeBSD.ORG  Tue Mar  5 14:45:34 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id C943536F
 for <freebsd-security@freebsd.org>; Tue,  5 Mar 2013 14:45:34 +0000 (UTC)
 (envelope-from feld@feld.me)
Received: from feld.me (unknown [IPv6:2607:f4e0:100:300::2])
 by mx1.freebsd.org (Postfix) with ESMTP id 9802F3C8
 for <freebsd-security@freebsd.org>; Tue,  5 Mar 2013 14:45:34 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=feld.me;
 s=blargle; 
 h=In-Reply-To:Message-Id:From:Mime-Version:Date:References:Subject:To:Content-Type;
 bh=YOWp44434GOpEJK4A99hvQKp0smxncSdu36tFPFs01w=; 
 b=UC28IF3zVLuTclhCB1X3ZuEHCQ0CmYm1SAKwN0PaFld7OGaxzoCQtIRliIbE2qqP3wMxoiHgkmOIZp4l9m5ynLm6nwZEPR/TuMmgxdveQ4QhxMUQsMQr86HCFhts0cd7;
Received: from localhost ([127.0.0.1] helo=mwi1.coffeenet.org)
 by feld.me with esmtp (Exim 4.80.1 (FreeBSD))
 (envelope-from <feld@feld.me>)
 id 1UCt7W-0001KY-0G; Tue, 05 Mar 2013 08:45:34 -0600
Received: from feld@feld.me by mwi1.coffeenet.org (Archiveopteryx 3.1.4)
 with esmtpsa id 1362494718-15571-30986/5/1; Tue, 5 Mar 2013 14:45:18
 +0000
Content-Type: text/plain; format=flowed; delsp=yes
To: freebsd-security@freebsd.org, Robert Simmons <rsimmons0@gmail.com>,
 "Koornstra, Reinoud" <koornstra@hp.com>
Subject: Re: Firewall Options
References: <CA+QLa9DgZWoajW0dTkNjOGsDsS=ggXefJK9v+traZq4F99uUnQ@mail.gmail.com>
 <op.wtfdrmfs34t2sn@tech304.office.supranet.net>
 <0EEF6678B3EEC94B9AE44705DF224D023697268C@G9W0725.americas.hpqcorp.net>
Date: Tue, 5 Mar 2013 08:45:17 -0600
Mime-Version: 1.0
From: Mark Felder <feld@feld.me>
Message-Id: <op.wtg9xr0k34t2sn@tech304.office.supranet.net>
In-Reply-To: <0EEF6678B3EEC94B9AE44705DF224D023697268C@G9W0725.americas.hpqcorp.net>
User-Agent: Opera Mail/12.14 (FreeBSD)
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2013 14:45:34 -0000

On Mon, 04 Mar 2013 16:34:58 -0600, Koornstra, Reinoud <koornstra@hp.com>  
wrote:

> Hi Mark,
>
> Why not consider NPF from NetBSD where SMP friendly firewalling is a  
> given.

I've actually been toying with the idea of reinstalling my firewall with  
NetBSD so I can try NPF. I just hate debugging firewall rules that I'm  
unfamiliar with :) However, it does look like an amazing project. I'm also  
not sure if NetBSD is more or less difficult to use as an upstream than  
OpenBSD.