From owner-freebsd-questions@FreeBSD.ORG Fri Jul 18 13:26:44 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C14AB48D; Fri, 18 Jul 2014 13:26:44 +0000 (UTC) Received: from mail-yk0-x233.google.com (mail-yk0-x233.google.com [IPv6:2607:f8b0:4002:c07::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 60AD023CA; Fri, 18 Jul 2014 13:26:44 +0000 (UTC) Received: by mail-yk0-f179.google.com with SMTP id 142so2153746ykq.38 for ; Fri, 18 Jul 2014 06:26:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=QRekanTfVIbrq1lsUa0AOTLgjWcSRsdnB359qS2C9BI=; b=GVK1WXsqB8Uu3rPLDzsBkyDceV/stBjNBn6J3jNfuPTQRZscIeH0J4PT6h1M6Xs3HX z2EJSe1oxIKPt/asJl4RfvuViOaNtgFndOgeLLeuppib3Oj2VUGJ60vrcZC3GLvftcM6 N4tNTHXBWoq9xlxLkoO3Op6QMx1esKMg/DaeSViyfeu/Ar2lKOwHjo2Olv3lUBw38g/5 /xRmAg4LmF9O8Oi4oA+AWUdfG/lGXXDU7JhhHrjfgHeYj8Dy8a1WgBiR/dgho9DiX9i/ o1VEEq7mk4bhiESYQVh46KouwJBBV8E8GvIgp0b4NlH1L6FTnItL4CxcYIFvaLpY66+y +lqQ== MIME-Version: 1.0 X-Received: by 10.236.127.81 with SMTP id c57mr7348195yhi.118.1405690003337; Fri, 18 Jul 2014 06:26:43 -0700 (PDT) Received: by 10.170.132.80 with HTTP; Fri, 18 Jul 2014 06:26:43 -0700 (PDT) In-Reply-To: <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de> References: <53C706C9.6090506@com.jkkn.dk> <20140718110645.GN87212@FreeBSD.org> <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de> Date: Fri, 18 Jul 2014 14:26:43 +0100 Message-ID: Subject: Re: Future of pf / firewall in FreeBSD ? - does it have one ? From: krad To: =?UTF-8?B?R2Vycml0IEvDvGhu?= Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 Cc: Gleb Smirnoff , FreeBSD Questions , freebsd-current@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Jul 2014 13:26:44 -0000 this is also another important point. If you go onto google and search on how to do this and that under pf, you get a mix of freebsd, and openbsd stuff coming up. I havent analysed it but i think the majority of the stuff is openbsd related. THerefore I find some nice solution to my problem, only to find out a bit later I cant use it because its not supported under freebsd. This is anoying, but more importantly confuses new sysadmins and puts them off adopting pf and possibly a bsd at all. On 18 July 2014 14:12, Gerrit K=C3=BChn wrote: > On Fri, 18 Jul 2014 15:06:45 +0400 Gleb Smirnoff > wrote about Re: Future of pf / firewall in FreeBSD ? - does it have one ?= : > > GS> The pf mailing list is about a dozen of active people. Yes, they are > GS> vocal on the new syntax. But there also exist a large number of commo= n > GS> FreeBSD users who simply use pf w/o caring about syntax and reading p= f > GS> mailing list. If we destroy the syntax compatibility a very large > GS> population of users would be hurt, for the sake of making a dozen > GS> happy. > > I have thought about this for some time now, and I think I do not agree. = I > do remember quite well when OpenBSD changed from ipf to pf, and I had to > come up with new rules files. Yes, this is a burden for people maintainin= g > these systems, but if the thing is well documented and comes with benefit= s > (like staying in sync with other developers, allowing new features etc.) = I > doubt that many people will really be minding this. > > > cu > Gerrit > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >