From owner-freebsd-current@FreeBSD.ORG Fri May 7 14:09:31 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 75E2F16A4CF; Fri, 7 May 2004 14:09:31 -0700 (PDT) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.189]) by mx1.FreeBSD.org (Postfix) with ESMTP id D02DC43D6A; Fri, 7 May 2004 14:09:24 -0700 (PDT) (envelope-from max@love2party.net) Received: from [212.227.126.207] (helo=mrelayng.kundenserver.de) by moutng.kundenserver.de with esmtp (Exim 3.35 #1) id 1BMCaw-0000XS-00; Fri, 07 May 2004 23:09:22 +0200 Received: from [217.227.158.41] (helo=donor.laier.local) by mrelayng.kundenserver.de with asmtp (TLSv1:RC4-MD5:128) (Exim 3.35 #1) id 1BMCaw-0001Hh-00; Fri, 07 May 2004 23:09:22 +0200 From: Max Laier To: pf4freebsd@freelists.org Date: Fri, 7 May 2004 23:09:10 +0200 User-Agent: KMail/1.6.1 MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_Ls/mAcr91mDZdYl"; charset="us-ascii" Content-Transfer-Encoding: 7bit Message-Id: <200405072309.31455.max@love2party.net> X-Provags-ID: kundenserver.de abuse@kundenserver.de auth:e28873fbe4dbe612ce62ab869898ff08 X-Mailman-Approved-At: Sat, 08 May 2004 05:10:16 -0700 cc: freebsd-doc@freebsd.org Subject: Looking for pf @ FreeBSD documentation X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 May 2004 21:09:31 -0000 --Boundary-02=_Ls/mAcr91mDZdYl Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline All, as some of you know, pf is now part of the FreeBSD tree as contributed=20 software. This, however, is not documented in any non-manpage way, yet. Hen= ce=20 I write this, to initiate such documentation and hope for your help in=20 creating such. =46or a start, it'd be great to have an article to explain about pf and giv= e=20 pointers how to get started with it. A tutorial which explains how to setup= a=20 simple dial-up ppp + NAT firewall would also be great (as I believe that th= e=20 pf in-kernel NAT is more than an alternative to the existing options). Ther= e=20 are such documents available for OpenBSD already, most noteable the PF FAQ = on=20 the OpenBSD homepage. The copyright for this document have been clarified b= y=20 a recent commit: http://marc.theaimsgroup.com/?l=3Dopenbsd-cvs&m=3D108389500216473&w=3D2=20 which makes it a prime candidate for reference. Thanks to Nick Holland and= =20 Joel Knight for this! They asked for permission to use FreeBSD changes to t= he=20 documentation, which is common sense imo and should not be a problem. More= =20 links to (OpenBSD) documentation are available from: http://pf4freebsd.love2party.net/ http://www.benzedrine.cx/pf.html http://www.openbsd.org/ Questions: Q: What version to document? A: At the moment we are still level with OpenBSD 3.4, but an update to Open= BSD=20 3.5 will happen in a bit. As it should take some time to get documentati= on=20 ready I think documenting 3.5 would be best. There will be some quirks w= ith=20 the interface handling, which I will explain in detail once we have patc= hes=20 ready. Q: While writting I found that XYZ is strange, can you change it? A: By all means, yes! Writting documentation helps to find bugs and strange= =20 stuff in the implementation (rc.d e.g.). If you find such things please= =20 take them to me, or the lists (see CC list). Q: What about ALTQ? A: Work is in progress ... but nothing final yet. I consider documenting th= e=20 ability of pf in that area helpful to advocate an ALTQ import ;) And eve= n=20 if it does not get imported into the base system, there will always be=20 external patches to support the releases. Q: ??? A: Bring additional question to me, or follow-up to this thread. I am not=20 subscribed to -doc so please CC me on what is going on there. I did choo= se=20 not to write the doc myself, as I am not a native speaker and neither mu= ch=20 of an admin, so I have a somewhat limited view on pf. Also this is a goo= d=20 way to get more eyes on pf and to improof the general infrastructure. With *your* help!!! Looking forward to hearing from you! Thanks in advance! (BCC'ed -current, thread is supposed to life in -doc or the pf4freebsd list= ). =2D-=20 Best regards, | mlaier@freebsd.org Max Laier | ICQ #67774661 http://pf4freebsd.love2party.net/ | mlaier@EFnet --Boundary-02=_Ls/mAcr91mDZdYl Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBAm/sLXyyEoT62BG0RApyNAJ9mujYDufOWLf6A5D+Fv1il354pUACePfdG 3cxkK1KjAU3caiE/cQcXG3Q= =KSgT -----END PGP SIGNATURE----- --Boundary-02=_Ls/mAcr91mDZdYl--