From owner-freebsd-net@FreeBSD.ORG  Wed Feb 25 20:30:04 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 953FD16A4CE
	for <net@freebsd.org>; Wed, 25 Feb 2004 20:30:04 -0800 (PST)
Received: from moutng.kundenserver.de (moutng.kundenserver.de
	[212.227.126.173])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5C78C43D31
	for <net@freebsd.org>; Wed, 25 Feb 2004 20:30:04 -0800 (PST)
	(envelope-from mlaier@vampire.homelinux.org)
Received: from [212.227.126.206] (helo=mrelayng.kundenserver.de)
	by moutng.kundenserver.de with esmtp (Exim 3.35 #1)
	id 1AwD9w-000436-00
	for net@freebsd.org; Thu, 26 Feb 2004 05:30:04 +0100
Received: from [80.131.150.236] (helo=vampire.homelinux.org)
	by mrelayng.kundenserver.de with asmtp (Exim 3.35 #1)
	id 1AwD9v-0005es-00
	for net@freebsd.org; Thu, 26 Feb 2004 05:30:03 +0100
Received: (qmail 68459 invoked by uid 1001); 26 Feb 2004 04:34:18 -0000
Date: Thu, 26 Feb 2004 05:34:18 +0100
From: Max Laier <max@love2party.net>
To: current@freebsd.org
Message-ID: <20040226043418.GA68438@router.laiers.local>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="UugvWAfsgieZRqgk"
Content-Disposition: inline
User-Agent: Mutt/1.4.1i
X-Provags-ID: kundenserver.de abuse@kundenserver.de
	auth:e28873fbe4dbe612ce62ab869898ff08
cc: hackers@freebsd.org
cc: net@freebsd.org
Subject: HEADS UP: pf import
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Feb 2004 04:30:04 -0000


--UugvWAfsgieZRqgk
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi,

we started importing OpenBSD's packet filter (pf) from it's port=20
(security/pf). The kernel parts are done, though not linked to any=20
automatic build. If you want to build it already, you can build from the=20
corresponding module directories:=20
        sys/modules/{pf, pflog, pfsync}

Make sure to install new and modified headers.

User of the port should hold off until this is done. The port will no=20
longer build with the new headers installed! There is no userland in the=20
tree, yet!

This brings pf from OpenBSD 3.4 with the complete OpenBSD 3.4 function=20
set. It was tested from the port for a long time now and brings some=20
features that were not available to FreeBSD before. We have reports from=20
people successfully running the port (and a preliminarily version of the=20
changes committed now) on production-use firewalls and servers.

To get an idea of pf's power I suggest reading the OpenBSD FAQ about it:
http://www.openbsd.org/faq/pf/index.html
or if you prefer a summarize, check out the port status report:
http://www.freebsd.org/news/status/report-oct-2003-dec-2003.html#Porting-Op=
enBSD's-pf

--=20
Best regards,				| max@love2party.net
Max Laier				| ICQ #67774661
http://pf4freebsd.love2party.net/	| mlaier@EFnet
--UugvWAfsgieZRqgk
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFAPXdGXyyEoT62BG0RAoF+AJ0YUaNIYEP607L6yUs8wrT3tIZjnACfd0Mp
r8eAqQzpi95FnnR+g9RErf8=
=pV+Y
-----END PGP SIGNATURE-----

--UugvWAfsgieZRqgk--