From owner-freebsd-questions@FreeBSD.ORG  Mon Jul 21 09:13:52 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 24BAE778
 for <freebsd-questions@freebsd.org>; Mon, 21 Jul 2014 09:13:52 +0000 (UTC)
Received: from nm7-vm8.bullet.mail.ir2.yahoo.com
 (nm7-vm8.bullet.mail.ir2.yahoo.com [212.82.96.133])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 745FF2B76
 for <freebsd-questions@freebsd.org>; Mon, 21 Jul 2014 09:13:50 +0000 (UTC)
Received: from [212.82.98.53] by nm7.bullet.mail.ir2.yahoo.com with NNFMP;
 21 Jul 2014 09:13:43 -0000
Received: from [46.228.39.79] by tm6.bullet.mail.ir2.yahoo.com with NNFMP;
 21 Jul 2014 09:13:43 -0000
Received: from [127.0.0.1] by smtp116.mail.ir2.yahoo.com with NNFMP;
 21 Jul 2014 09:13:43 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.es; s=s1024;
 t=1405934023; bh=em9ozT8/FwtstyyDcH9bfiP5Suvfg15qkiimNu7eUkY=;
 h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Date:From:To:Subject:Message-Id:In-Reply-To:References:X-Mailer:Disposition-Notification-To:Mime-Version:Content-Type:Content-Transfer-Encoding;
 b=mKcarsbei9lqDopZgksO8fBRzZo+LEG6tXYQnZ9rqWsy+dWfeW2qvhHMMFnSpM53xFk13P/y0RlOaq7HbJIgN0RaCws0xdv8Bt+/LGDKMMhbeYg9GOQqCLw1AfsYX8FIVov5f5SAFooaulI9Kdj8faSN7DfTC2D200Jj1Ijd62s=
X-Yahoo-Newman-Id: 649552.58720.bm@smtp116.mail.ir2.yahoo.com
X-Yahoo-Newman-Property: ymail-3
X-YMail-OSG: lp3y9BIVM1lTXZO6kRKW7CdOMmuBCp6vSc2XyKtoN2.GMpM
 XnoID36CBIUeB8mOzyz8KuONwk8OTpMT..ez2DUplKnCm4ds.99WqWFgazRB
 X00WtJOhG6lTFVke93UyAmL9vwE1NEll.hMitfj.6x.HwJIv_nGSJmCeQ5Ik
 dTBu9DkzTW5ov_TA.JUgjAB0t3MbQzhckfk9FWNMY_.6rzPNrVgDrw5w5srC
 xTQo5nH4clxlMFpS90N0cE1BJ79asqy1gHh5yP9x_lWN8EZquVOXhFt30FQg
 E6tInzfhv_TLU84QxNhFNGVuvro6rzKDSqgDe42.bjrSwh2jsyeR5IY.Df79
 7oxVKm0sKSGyYO.KZyQsftNbBPQ_7MzYASzbK5pSEXyk98pPwY9npACGlpUw
 MIQ9k.t7XO_fWWJvpsfhBvzeVwqBivzAabllHn246BrBcrTpCUitPuw6yT2O
 OVkMDjtqg8LhA7Jw8Db1FmbE2nHkLBbdKwxEJ7HrIfEHminZDeroo3hoPRw- -
X-Yahoo-SMTP: mX392iiswBAeJNdO_s.EW62LZDJR
Date: Mon, 21 Jul 2014 11:14:03 +0200
From: Eduardo Morras <emorrasg@yahoo.es>
To: freebsd-questions@freebsd.org
Subject: Re: Future of pf / firewall in FreeBSD ? - does it have one ?
Message-Id: <20140721111403.1ed4838e38e9b79f3843d9de@yahoo.es>
In-Reply-To: <CAAdA2WPdEmcQ-0m14-r0hMUXuYu3joTA6TeAGwtdXhSL+Rknwg@mail.gmail.com>
References: <53C706C9.6090506@com.jkkn.dk> <20140718110645.GN87212@FreeBSD.org>
 <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de>
 <CALfReycHtSi5GXgFZihrTsgDG6wc-ZfkYmQu7AjQmOKdeXntrA@mail.gmail.com>
 <CAEeRwNV3bJrM5KrGObZtNvSY1mVMW9jz2M4t2m2SSq_vvWmZ5w@mail.gmail.com>
 <CALfReyfWJd7YOi_Y8Mq=Q-xndLueF7vU5xwc1w_YGyM1a9DQZA@mail.gmail.com>
 <53CA2D39.6000204@sasktel.net>
 <CALfReyfkZY1ZDNohP6npRVQfjBK2M6j59R8idUGazr1yJDX3Jg@mail.gmail.com>
 <20140720123916.GV96250@e-new.0x20.net>
 <CAJcQMWe9=3PvOhfT8N-78N04A0u3OvkjOd-HPCiBUcJFZZb0-g@mail.gmail.com>
 <20140720134133.1d30f725@kan>
 <20140720201251.3bdd2226.freebsd@edvax.de>
 <CAAdA2WPdEmcQ-0m14-r0hMUXuYu3joTA6TeAGwtdXhSL+Rknwg@mail.gmail.com>
X-Mailer: Sylpheed 3.4.2 (GTK+ 2.24.22; amd64-portbld-freebsd9.2)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jul 2014 09:13:52 -0000

On Sun, 20 Jul 2014 21:35:25 +0300
Odhiambo Washington <odhiambo@gmail.com> wrote:

> So to summarize (probably):
> 
> Someone needs to decide whether or not they want FreeBSD or OpenBSD
> when it comes to PF.
> It's a simple decision to make:)
> You draw a two-column table with FreeBSD and OpenBSD on each one, do
> your analysis and decide where to pledge your allegiance.

... Not FreeBSD and OpenBSD discussion, but pf on FreeBSD and pf on OpenBSD, and note that I don't use the word 'versus'/'vs.'

> 
> Debate CLOSED!

No think so. I can think some ideas not discussed in this thread, 

a) One of the best parts of OpenBSD pf is the configure syntax. Could it be implemented in ipfw? Different apps with same config language.

b) I'm not a kernel, pf or ipfw developer, but in user space, threading is not the only way to get smp, you can use fork or multiple processes, see f.ex. PostgreSQL, or varnish with its varnishd, adm, log.. different specialiced bins for same app.

I know (because I discovered it in the thread) there are other conflict points as network stack, vm between OpenBSD and FreeBSD, but perhaps we can dodge the problem using other way.

---   ---
Eduardo Morras <emorrasg@yahoo.es>