Date: Mon, 11 Aug 2008 17:18:51 +0200 From: Max Laier <max@love2party.net> To: freebsd-pf@freebsd.org Subject: Re: Why the old version of pf? Message-ID: <200808111718.51616.max@love2party.net> In-Reply-To: <f1019d520808110559v47554db4r858966f28d61ec77@mail.gmail.com> References: <f1019d520808110559v47554db4r858966f28d61ec77@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
On Monday 11 August 2008 14:59:46 Redd Vinylene wrote:
> Just curious why FreeBSD 7 has to use an old version of pf? There's
> been so many improvements!
It's a mixed bag, I'd say. I'm pondering an update to 4.3, but haven't found
the time yet. And now 4.4 is in sight already and has a lot more stuff ...
though there seem to be some problems with some of the new stuff ...
Right now, the simple answer is just: It hasn't been done.
> I'd very much like to use the new IP range
> feature for instance, so I can reduce
>
> box = "{ 80.252.2.4, 80.252.2.5, 80.252.2.6, 80.252.2.7, 80.252.2.8,
> ...
> 80.252.2.124, 80.252.2.125, 80.252.2.126, 80.252.2.127 }"
>
> to
>
> box = "{ 80.252.2.4 - 80.252.2.127 }"
Now, if that's your only problem I suggest that you read about netmasks and
write the above as either
table <box> { 80.252.2.0/25, !80.252.2.3/30 }
or
box = "{ 80.252.2.64/26, 80.252.2.32/27, 80.252.2.16/28, \
80.252.2.8/29, 80.252.2.4/30 }"
as Nejc suggested.
--
/"\ Best regards, | mlaier@freebsd.org
\ / Max Laier | ICQ #67774661
X http://pf4freebsd.love2party.net/ | mlaier@EFnet
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200808111718.51616.max>