From owner-freebsd-pf@FreeBSD.ORG Wed Jul 28 01:28:20 2010 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8C606106566B for ; Wed, 28 Jul 2010 01:28:20 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from tarsier.geekcn.org (tarsier.geekcn.org [IPv6:2001:470:a803::1]) by mx1.freebsd.org (Postfix) with ESMTP id 36C8E8FC1E for ; Wed, 28 Jul 2010 01:28:20 +0000 (UTC) Received: from mail.geekcn.org (tarsier.geekcn.org [211.166.10.233]) by tarsier.geekcn.org (Postfix) with ESMTP id 0519DA5A759; Wed, 28 Jul 2010 09:28:19 +0800 (CST) X-Virus-Scanned: amavisd-new at geekcn.org Received: from tarsier.geekcn.org ([211.166.10.233]) by mail.geekcn.org (mail.geekcn.org [211.166.10.233]) (amavisd-new, port 10024) with LMTP id AhTUd6HYMP06; Wed, 28 Jul 2010 09:28:12 +0800 (CST) Received: from delta.delphij.net (drawbridge.ixsystems.com [206.40.55.65]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by tarsier.geekcn.org (Postfix) with ESMTPSA id 0CB8FA55189; Wed, 28 Jul 2010 09:28:10 +0800 (CST) DomainKey-Signature: a=rsa-sha1; s=default; d=delphij.net; c=nofws; q=dns; h=message-id:date:from:reply-to:organization:user-agent: mime-version:to:subject:references:in-reply-to:x-enigmail-version:openpgp: content-type:content-transfer-encoding; b=apbjAsASxYqSMbNu9P4XYK+CL8W1r/tK8+UyUrLy328ogLUKAwDMQtjZJNGS+mjp3 +zAT4G5FteRPEq3E59G9g== Message-ID: <4C4F87A4.9020601@delphij.net> Date: Tue, 27 Jul 2010 18:28:04 -0700 From: Xin LI Organization: The Geek China Organization User-Agent: Mozilla/5.0 (X11; U; FreeBSD amd64; en-US; rv:1.9.1.11) Gecko/20100721 Thunderbird/3.0.6 ThunderBrowse/3.3.1 MIME-Version: 1.0 To: freebsd-pf@freebsd.org References: <4C4F86AD.9040703@com.jkkn.dk> In-Reply-To: <4C4F86AD.9040703@com.jkkn.dk> X-Enigmail-Version: 1.0.1 OpenPGP: id=3FCA37C1; url=http://www.delphij.net/delphij.asc Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Subject: Re: Time to upgrade the pf port in FreeBSD ? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: d@delphij.net List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jul 2010 01:28:20 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2010/07/27 18:23, Kristian Krĉmmer Nielsen wrote: > Hey, > > As of time being, we still include pf as of OpenBSD 4.1 (released May > 2007). > > Recently syntax has changed a lot in the releases of pf in OpenBSD 4.7, > just notice that "nat-to" and "rtr-to" are now part of the > pass-commands. This means also means that refereeing to the OpenBSD FAQ > from the FreeBSD manual is close to useless. I have not be able to find > a online copy of the FAQ for PF from OpenBSD 4.1, so simply changing the > documentation link is not an easy option. > > The later version of pf is easier to use. > > So I was wondering, how many is actually using pf and is it time to get > together and update the current port of pf included in FreeBSD to a more > recent version?, e.x. the version from OpenBSD 4.7? > > Has anyone considered this? / is anyone interested in doing this? IIRC someone have work in progress in a svn branch but I'm not sure if it's HEAD-ready or not... Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! Live free or die -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (FreeBSD) iQEcBAEBCAAGBQJMT4ekAAoJEATO+BI/yjfBODoIAMmiorsrnfFZWpxXTDjBqM7X Hm8cMvDaTJcoV43sx4M+EO66D1oTAcwuT7k1XNSjum4WZyjSEUyrChwLjjpHJzAw rqVnlIljanX+E19D6P/oAv6G4aF+M7QrCyLALrJaa+703PtawmsBX0gRfAGHMRLi 0te/FPrvzvUSlccofl6a0UARG1hX0AP5vKK+wTjJUEiGfFpotB03vGNHwwTTG1Hw gZRkaRjI9LAy2oDlJtm1vuLg54V1fP30YDjNpjSLGaclFtpO0AlAqA43p9qQjX39 pQG5NR8W5KfGhOXVoCroenL7d3zK3WxjAciKm2HFz9d72TGKcPNoHmWMaARAC6E= =6yGZ -----END PGP SIGNATURE-----