From owner-freebsd-virtualization@FreeBSD.ORG Mon Oct 18 18:41:23 2010 Return-Path: <owner-freebsd-virtualization@FreeBSD.ORG> Delivered-To: freebsd-virtualization@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25D1410656A3 for <freebsd-virtualization@freebsd.org>; Mon, 18 Oct 2010 18:41:23 +0000 (UTC) (envelope-from ermal.luci@gmail.com) Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id A4CA58FC12 for <freebsd-virtualization@freebsd.org>; Mon, 18 Oct 2010 18:41:22 +0000 (UTC) Received: by bwz16 with SMTP id 16so6111bwz.13 for <freebsd-virtualization@freebsd.org>; Mon, 18 Oct 2010 11:41:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:mime-version:sender:received :in-reply-to:references:from:date:x-google-sender-auth:message-id :subject:to:content-type; bh=kdKFyJiGIKELHWBESFr5nfx6JsLzRjhkotT+bqgmEQA=; b=OfouZzyX0UQxEWUQpTFsY462Z8jFmGWCR3N8E5djbdyNx8fylaKMymyusg2SFBhGlB 03io1lbdLgRQiSElJAMFdXOy1eebVzWuEHLPVlswvMQipbmsOsHJwz/m4kG7wQLZ9zeo XA0tgpWYfBZCdTbjNJdnLauyFKtqAkIDoBznM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:content-type; b=sHmoq6ZDLwWjgaMexZZHjBSChc8jOzWH9ZU0SaoA4mQDw79DYouNVumH/91SyLoGiX nTzyEy5BYsp4+16SqH5THmmgRKM6K1EUjybGtBWQ8ymzNhjF9DDH8P3eCa9Ejt1MvBVJ yAQkvE2PMe6KgtCsBxuzdZKwd58ht6lQBGUFk= Received: by 10.204.68.67 with SMTP id u3mr4611968bki.199.1287425555072; Mon, 18 Oct 2010 11:12:35 -0700 (PDT) MIME-Version: 1.0 Sender: ermal.luci@gmail.com Received: by 10.204.35.68 with HTTP; Mon, 18 Oct 2010 11:12:14 -0700 (PDT) In-Reply-To: <AANLkTinXNRKSwjuOeQkDTANhSSbHYHZnf4SvaFHbEdrg@mail.gmail.com> References: <AANLkTinXNRKSwjuOeQkDTANhSSbHYHZnf4SvaFHbEdrg@mail.gmail.com> From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= <eri@freebsd.org> Date: Mon, 18 Oct 2010 19:12:14 +0100 X-Google-Sender-Auth: 7avyEe8Ix2wSW55xIoFwWUEpD3g Message-ID: <AANLkTikhiGp_kvLXrrcQRzfD40=y93w_JkpUaa6dk_zB@mail.gmail.com> To: FreeBSD virtualization mailing list <freebsd-virtualization@freebsd.org> Content-Type: text/plain; charset=ISO-8859-1 X-Mailman-Approved-At: Mon, 18 Oct 2010 19:19:35 +0000 Subject: [PATCH] pf(4) patch from OpenBSD 4.5 X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." <freebsd-virtualization.freebsd.org> List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>, <mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization> List-Post: <mailto:freebsd-virtualization@freebsd.org> List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help> List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>, <mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe> X-List-Received-Date: Mon, 18 Oct 2010 18:41:23 -0000 Hello, the link http://people.freebsd.org/~eri/pf45_1.diff has the patch for pf(4) as of OpenBSD 4.5 version. The patch is against HEAD. After OpenBSD 4.5 the syntax has changed and this is the reason for such an 'old' version patch. After importing this one the work will go on the newest version and decisions on it will than be done. Be aware that this patch has even support for VIMAGE/VNET. It will enable you to run pf(4) with[in] jails+vnets or just vnets themselves with separate rulesets and policies. pfsync(4) can be loaded as a module also with this patch. Feedback on the VIMAGE enabled kernels is very welcome. Regards, -- Ermal P.S. keep me CC'd since i am not on this list.