From owner-freebsd-pf@FreeBSD.ORG Tue Oct 19 13:39:03 2010 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3B90410656B7; Tue, 19 Oct 2010 13:39:03 +0000 (UTC) (envelope-from jamesbrandongooch@gmail.com) Received: from mail-fx0-f54.google.com (mail-fx0-f54.google.com [209.85.161.54]) by mx1.freebsd.org (Postfix) with ESMTP id 70C138FC18; Tue, 19 Oct 2010 13:39:02 +0000 (UTC) Received: by fxm12 with SMTP id 12so1594891fxm.13 for ; Tue, 19 Oct 2010 06:39:01 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=g0tRUsFxXcUpJvIeGEQ/weA0uyVYQk5TqORHfoXZKpc=; b=A/Vu83+7eqUkdH+Dymq5OsBnO6AgpvByKhnFZMDqT0QavnKMbLBGVX1QemqZuna4WT iLq3bQnAX7RH5u6eLOoSvTm1iBWFUy6qXvn3znXfZjZ/86dV9O8XKMt3MIxgJQeXOJQU bIwWd6/FSJUiRZcRUjfpMro3sUlNvvy+var0o= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=wCnq4qodvZTIk2IeId25rZmFMLsZUKQkBUngEtDg/GwXbXsu7vfYn4/Qo1iHRy1tnM aKvKC4IOPSN2qSWUnKYflT8q9TEndS3ZZC15Jn5JUYQVqZXvmWNoFpj3NxdOBw4o3DJj zbRHLJzQQevcru0BE2D6HfMJP03TbgzxYA1BI= MIME-Version: 1.0 Received: by 10.216.51.21 with SMTP id a21mr6120131wec.50.1287495541194; Tue, 19 Oct 2010 06:39:01 -0700 (PDT) Received: by 10.216.55.135 with HTTP; Tue, 19 Oct 2010 06:39:01 -0700 (PDT) In-Reply-To: <4CBD1B68.2040502@laiers.net> References: <4CBD1B68.2040502@laiers.net> Date: Tue, 19 Oct 2010 08:39:01 -0500 Message-ID: From: Brandon Gooch To: Max Laier Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: freebsd-net , freebsd-pf@freebsd.org Subject: Re: [PATCH] pf(4) patch from OpenBSD 4.5 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Oct 2010 13:39:03 -0000 On Mon, Oct 18, 2010 at 11:15 PM, Max Laier wrote: > On 18.10.2010 20:16, Brandon Gooch wrote: >> >> On Mon, Oct 18, 2010 at 1:10 PM, Ermal Lu=E7i =A0wrote: >>> >>> Hello, >>> >>> the link http://people.freebsd.org/~eri/pf45_1.diff has the patch for >>> pf(4) as of OpenBSD 4.5 version. >>> The patch is against HEAD. >>> After OpenBSD 4.5 the syntax has changed and this is the reason for >>> such an 'old' version patch. >>> >>> After importing this one the work will go on the newest version and >>> decisions on it will than be done. >>> >>> Be aware that this patch has even support for VIMAGE/VNET. >>> It will enable you to run pf(4) with[in] jails+vnets or just vnets >>> themselves with separate rulesets >>> and policies. >>> pfsync(4) can be loaded as a module also with this patch. >>> >>> Feedback is very welcome. >> >> Should this compile against HEAD, because I think we're missing a header= : >> >> brandon@x300:~$ cd /usr/src >> brandon@x300:/usr/src$ patch< =A0~/pf45_1.diff > > $ patch -p0 < ~/pf45_1.diff > >> brandon@x300:/usr/src$ cd /usr/src/sys/modules/pf >> brandon@x300:modules/pf$ sudo make > > Regards, > =A0Max Thanks Max! -Brandon