From owner-freebsd-current@FreeBSD.ORG Sun Jul 20 19:14:39 2014 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C6B24972; Sun, 20 Jul 2014 19:14:39 +0000 (UTC) Received: from mail-we0-x230.google.com (mail-we0-x230.google.com [IPv6:2a00:1450:400c:c03::230]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 0588A2246; Sun, 20 Jul 2014 19:14:38 +0000 (UTC) Received: by mail-we0-f176.google.com with SMTP id q58so6634039wes.21 for ; Sun, 20 Jul 2014 12:14:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:from:to:cc:subject:in-reply-to:references:user-agent:date :message-id:mime-version:content-type:content-transfer-encoding; bh=HPaFv6TI2Ejx9fCGNN9VufSCyTkdujnY7LDyoTLrqvU=; b=jr3zza6ALEFxztiX6lwZmPBOosizTep5ih9x95EVczdUSWRrgDlNuVHU3IEx3ASUk2 MoP073mJKwXGObuO4mWuQXkcUNiw5D3G98h5t/k+kkf89Dg2ZCZVQiMJ9TSAAXDbkNJW oHQgkEyPHD6s7LW03poT5o+5+89g6XTT/jGTJAR5zgGK7h6iPipGO4zOxuqRjXE7yxp7 apW4Eitt34XVDiDhiNsq8PT6F0OCtjxNbG5mrsgAhFSYxbD4nJFu4Is1kgNNe3qI+j3U w8i7AjFdjhWcpw2Zf/wWQ6W8Y83d/UK89qvzmil7+oO45jBVwLyRNoJdm54h7CHeYmUG swfA== X-Received: by 10.194.243.200 with SMTP id xa8mr15596419wjc.97.1405883677067; Sun, 20 Jul 2014 12:14:37 -0700 (PDT) Received: from srvbsdfenssv.interne.associated-bears.org (LCaen-151-92-21-48.w217-128.abo.wanadoo.fr. [217.128.200.48]) by mx.google.com with ESMTPSA id l8sm31759661wje.15.2014.07.20.12.14.35 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 20 Jul 2014 12:14:36 -0700 (PDT) Sender: Eric Masson Received: from srvbsdfenssv.interne.associated-bears.org (localhost [127.0.0.1]) by srvbsdfenssv.interne.associated-bears.org (Postfix) with ESMTP id AEB08CF4D3; Sun, 20 Jul 2014 21:14:33 +0200 (CEST) X-Virus-Scanned: amavisd-new at interne.associated-bears.org Received: from srvbsdfenssv.interne.associated-bears.org ([127.0.0.1]) by srvbsdfenssv.interne.associated-bears.org (srvbsdfenssv.interne.associated-bears.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xb0n0Jvaj4rc; Sun, 20 Jul 2014 21:14:32 +0200 (CEST) Received: by srvbsdfenssv.interne.associated-bears.org (Postfix, from userid 1001) id A1596CF129; Sun, 20 Jul 2014 21:14:32 +0200 (CEST) From: Eric Masson To: krad Subject: Re: Future of pf / firewall in FreeBSD ? - does it have one ? In-Reply-To: (krad's message of "Sun, 20 Jul 2014 12:18:54 +0100") References: <53C706C9.6090506@com.jkkn.dk> <20140718110645.GN87212@FreeBSD.org> <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de> <53CA2D39.6000204@sasktel.net> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3 (berkeley-unix) X-Operating-System: FreeBSD 9.2-RELEASE-p8 amd64 Date: Sun, 20 Jul 2014 21:14:31 +0200 Message-ID: <86fvhvrgfc.fsf@srvbsdfenssv.interne.associated-bears.org> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Cc: freebsd-current@freebsd.org, Stephen Hurd , Gleb Smirnoff , Gerrit =?iso-8859-1?Q?K=FChn?= , FreeBSD Mailing List , Matt Bettinger X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 20 Jul 2014 19:14:40 -0000 krad writes: Hi, > I really like the idea of the openpf version, that has been mentioned > in this thread. It would be nice but as it's been written in this thread, Open & Free internals are quite different beasts, goals are different on both platforms, so I doubt OpenPF will exist in the future. > It would be awesome if it ended up as a supported linux thing as well, > so the world could be rid of iptables. Linux world will get rid of iptables one of these days, nftables inclusion in mainline is a clear signal. I don't really like linux firewalling engines but projects like OpenWRT and Luci hide the command line hell in most cases, so I'm slowly retiring FreeBSD/pf handcrafted appliances in favor of OpenWRT boxes. Éric Masson -- Bonjour je sais qu il existe un prog pour faire des cartes bancaires puis je l avoir par mail pas pour en fabriquer mais par curiosite merci a tous -+- LM In GNU : La cléf pour fabriquer un neuneu enfin dévoilée -+-