From owner-cvs-all@FreeBSD.ORG Wed Feb 25 22:01:27 2004 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6160016A4CE; Wed, 25 Feb 2004 22:01:27 -0800 (PST) Received: from troutmask.apl.washington.edu (troutmask.apl.washington.edu [128.208.78.105]) by mx1.FreeBSD.org (Postfix) with ESMTP id 452A543D2D; Wed, 25 Feb 2004 22:01:27 -0800 (PST) (envelope-from sgk@troutmask.apl.washington.edu) Received: from troutmask.apl.washington.edu (localhost [127.0.0.1]) i1Q61QTA070254; Wed, 25 Feb 2004 22:01:26 -0800 (PST) (envelope-from sgk@troutmask.apl.washington.edu) Received: (from sgk@localhost)i1Q61QuO070253; Wed, 25 Feb 2004 22:01:26 -0800 (PST) (envelope-from sgk) Date: Wed, 25 Feb 2004 22:01:26 -0800 From: Steve Kargl To: Max Laier Message-ID: <20040226060126.GA70201@troutmask.apl.washington.edu> References: <200402260234.i1Q2YDx1014240@repoman.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200402260234.i1Q2YDx1014240@repoman.freebsd.org> User-Agent: Mutt/1.4.1i cc: cvs-src@freebsd.org cc: src-committers@freebsd.org cc: cvs-all@freebsd.org Subject: Re: cvs commit: src/sys/contrib/pf/net if_pflog.c if_pflog.h if_pfsync.c if_pfsync.h pf.c pf_ioctl.c pf_norm.c pf_osfp.c pf_table.c pfvar.h src/sys/contrib/pf/netinet in4_cksum.c X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Feb 2004 06:01:27 -0000 On Wed, Feb 25, 2004 at 06:34:13PM -0800, Max Laier wrote: > mlaier 2004/02/25 18:34:12 PST > > FreeBSD src repository > > Modified files: > sys/contrib/pf/net if_pflog.c if_pflog.h if_pfsync.c > if_pfsync.h pf.c pf_ioctl.c pf_norm.c > pf_osfp.c pf_table.c pfvar.h > sys/contrib/pf/netinet in4_cksum.c > Log: > Bring diff from the security/pf port. This has code been tested as a port > for a long time and is run in production use. This is the code present in > portversion 2.03 with some additional tweaks. > > The rather extensive diff accounts for: > - locking (to enable pf to work with a giant-free netstack) > - byte order difference between OpenBSD and FreeBSD for ip_len/ip_off > - conversion from pool(9) to zone(9) > - api differences etc. > > Approved by: bms(mentor) (in general) > Was this import discussed on arch@ or current@? We now have ipfw, ipfilter, and pf in the base system. How many more firewall packages are we going to import into the base system? Are you going to remove ipfw or ipfilter? Is there a NO_PF make.conf knob? -- Steve