From owner-freebsd-pf@FreeBSD.ORG  Thu Sep 16 04:01:17 2004
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 674)
	id 57D8F16A4D5; Thu, 16 Sep 2004 04:01:17 +0000 (GMT)
Delivered-To: mlaier@vampire.homelinux.org
Received: (qmail 4687 invoked by uid 1005); 13 Feb 2004 16:13:02 -0000
Delivered-To: max@vampire.homelinux.org
Received: (qmail 4684 invoked from network); 13 Feb 2004 16:13:02 -0000
Received: from moutng.kundenserver.de (212.227.126.184)
  by p50839a05.dip.t-dialin.net with SMTP; 13 Feb 2004 16:13:02 -0000
Received: from [212.227.126.212] (helo=mxng16.kundenserver.de)
	by moutng.kundenserver.de with esmtp (Exim 3.35 #1)
	id 1Arfrw-0000H3-00
	for max@vampire.homelinux.org; Fri, 13 Feb 2004 17:08:44 +0100
Received: from [206.53.239.180] (helo=turing.freelists.org)
	by mxng16.kundenserver.de with esmtp (Exim 3.35 #1)
	id 1Arfrv-0005bV-00
	for max@love2party.net; Fri, 13 Feb 2004 17:08:44 +0100
Received: from turing (localhost [127.0.0.1])ESMTP
	id 16E9439528A; Fri, 13 Feb 2004 11:05:44 -0500 (EST)
Received: with ECARTIS (v1.0.0; list pf4freebsd);
	Fri, 13 Feb 2004 11:05:32 -0500 (EST)
X-Original-To: pf4freebsd@freelists.org
Delivered-To: pf4freebsd@freelists.org
Received: from mail.fluidhosting.com (mail.fluidhosting.com [66.150.201.72])
	ESMTP id 14FAE395256
	for <pf4freebsd@freelists.org>; Fri, 13 Feb 2004 11:05:23 -0500 (EST)
Received: (qmail 49513 invoked by uid 398); 13 Feb 2004 16:04:41 -0000
Received: from stargazer-o.stars-smi.com (stargazer-o.stars-smi.com
	[151.200.173.2]) 	by 66.150.201.72 (IMP) with HTTP 
	for <pf-r@solarflux.org@localhost>; Fri, 13 Feb 2004 11:04:41 -0500
Message-ID: <1076688281.402cf5996a0dc@66.150.201.72>
From: pf-r@solarflux.org
To: pf4freebsd@freelists.org
MIME-Version: 1.0
Content-type: text/plain;
  charset=ISO-8859-1
User-Agent: Internet Messaging Program (IMP) 3.2.2
X-Originating-IP: 151.200.173.2
X-archive-position: 272
X-ecartis-version: Ecartis v1.0.0
Sender: pf4freebsd-bounce@freelists.org
Errors-To: pf4freebsd-bounce@freelists.org
X-original-sender: pf-r@solarflux.org
Precedence: normal
X-list: pf4freebsd
Content-Transfer-Encoding: quoted-printable
X-Provags-Forward: max@love2party.net -> max@vampire.homelinux.org
X-UID: 390
X-Length: 4454
X-Mailman-Approved-At: Thu, 16 Sep 2004 04:05:47 +0000
Subject: [pf4freebsd] Re: [OT] FreeBSD/PF for Darwin/OSX?
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Reply-To: pf4freebsd@freelists.org
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
Date: Thu, 16 Sep 2004 04:01:17 -0000
X-Original-Date: Fri, 13 Feb 2004 11:04:41 -0500
X-List-Received-Date: Thu, 16 Sep 2004 04:01:17 -0000

I guess Chris didn't 'reply-all'; thanks, though for the detailed info!

----- Forwarded message from "Christopher D. Lewis" <Lewis@Alumni.Duke.ed=
u>
-----
    Date: Fri, 13 Feb 2004 08:12:22 -0600
    From: "Christopher D. Lewis" <Lewis@Alumni.Duke.edu>
Reply-To: "Christopher D. Lewis" <Lewis@Alumni.Duke.edu>
 Subject: Re: [pf4freebsd] Re: [OT] FreeBSD/PF for Darwin/OSX?
      To: "pf-r@solarflux.org" <pf-r@solarflux.org>


On Feb 13, 2004, at 6:50 AM, pf-r@solarflux.org wrote:

> OS X is based on the mach (micro)kernel, I believe.  I'm all for=20
> having pf
> ported over to OS X!

MacOS X is the combination of the Darwin operating system=20
<http://www.opendarwin.org> and Apple's proprietary additions=20
(principally APIs and user interface).  The Darwin kernel places in one=20
address space a hybrid mach microkernel and FreeBSD-derived kernel,=20
with mach handling IPC and scheduling and BSD handling the *nix system=20
calls expected to be supported by a *nix operating system.  Apple has=20
not prioritized firewalling, and until recently hasn't shipped hardware=20
which would make serious firewallers especially interested.  The=20
Darwin/MacOS X firewall, the ipfw obtained from the last FreeBSD synch,=20
is contained in a loadable kernel module called a .kext (kernel=20
extension). (the kernel extension is located at=20
/System/Library/Extensions/IPFirewall.kext and the source should be at=20
opendarwin.org)

> BTW, I've updated the pf-r with some new content; mainly the latest=20
> version of
> pf-freebsd, a 'fresh' section at the top for news, some new tools=20
> (including
> Hatchet)...  I'm going to go over the examples again soon and try to=20
> better
> categorize them (grouping by features, if possible).

Efforts to get pf working on MacOS X would be greatly appreciated by=20
some users, and making sure it fits into a separate .kext would allow=20
selection of which firewall tool to load at boot time.

Best regards,
	Chris


----- End forwarded message -----