From owner-freebsd-questions@FreeBSD.ORG Fri Jul 18 14:10:19 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id ADDE8F18; Fri, 18 Jul 2014 14:10:19 +0000 (UTC) Received: from mail-wg0-x22e.google.com (mail-wg0-x22e.google.com [IPv6:2a00:1450:400c:c00::22e]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id E781A28D1; Fri, 18 Jul 2014 14:10:18 +0000 (UTC) Received: by mail-wg0-f46.google.com with SMTP id m15so3463105wgh.17 for ; Fri, 18 Jul 2014 07:10:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=DOQDXAKMd+eI3CTGJ6YWfp6QrWCTar53zEo1aHhXxa4=; b=rvc5OseEDGZqoxQFvQ6kojn9jSsAl4CyfWdAvCtzaHboaFyJ105nopUeH+Mkd9sKh8 csLz6FPOY9Fo6coejNDsqIOIoEVc1iUZV+E3rgrBjnworITb7weGwjv5pw0dAm42+HkY 85a1S5NNBfOBQJ3byEKk3gBKbZDESW4GFtMm5rs3VgIP5yc4jSfFqRxO48Z0ePay6zWB BtpWRwl2VOIXEQn9y7PorlZdJRhIO/xMNZPtXa0hzYAm8/iI7TsjtmOW81F4By3LwBzE fDMOEOpeJDCNhkCBWfrr6W2G7ROD4E6PizZPCdKPE624gmQXtHiRo0prIXge9yawCUgu Hpzg== MIME-Version: 1.0 X-Received: by 10.194.76.99 with SMTP id j3mr7211235wjw.85.1405692616468; Fri, 18 Jul 2014 07:10:16 -0700 (PDT) Received: by 10.216.78.72 with HTTP; Fri, 18 Jul 2014 07:10:16 -0700 (PDT) Received: by 10.216.78.72 with HTTP; Fri, 18 Jul 2014 07:10:16 -0700 (PDT) In-Reply-To: References: <53C706C9.6090506@com.jkkn.dk> <20140718110645.GN87212@FreeBSD.org> <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de> Date: Fri, 18 Jul 2014 09:10:16 -0500 Message-ID: Subject: Re: Future of pf / firewall in FreeBSD ? - does it have one ? From: Matt Bettinger To: krad Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.18 Cc: freebsd-current@freebsd.org, Gleb Smirnoff , FreeBSD Mailing List , =?UTF-8?B?R2Vycml0IEvDvGhu?= X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Jul 2014 14:10:19 -0000 Back in the day we didn't have Google to ask the oracle for cut and paste answers. If the man page is accurate that should be good enough. On Jul 18, 2014 8:26 AM, "krad" wrote: > this is also another important point. If you go onto google and search on > how to do this and that under pf, you get a mix of freebsd, and openbsd > stuff coming up. I havent analysed it but i think the majority of the stu= ff > is openbsd related. THerefore I find some nice solution to my problem, on= ly > to find out a bit later I cant use it because its not supported under > freebsd. This is anoying, but more importantly confuses new sysadmins and > puts them off adopting pf and possibly a bsd at all. > > > On 18 July 2014 14:12, Gerrit K=C3=BChn wrote: > > > On Fri, 18 Jul 2014 15:06:45 +0400 Gleb Smirnoff > > wrote about Re: Future of pf / firewall in FreeBSD ? - does it have one > ?: > > > > GS> The pf mailing list is about a dozen of active people. Yes, they ar= e > > GS> vocal on the new syntax. But there also exist a large number of > common > > GS> FreeBSD users who simply use pf w/o caring about syntax and reading > pf > > GS> mailing list. If we destroy the syntax compatibility a very large > > GS> population of users would be hurt, for the sake of making a dozen > > GS> happy. > > > > I have thought about this for some time now, and I think I do not agree= . > I > > do remember quite well when OpenBSD changed from ipf to pf, and I had t= o > > come up with new rules files. Yes, this is a burden for people > maintaining > > these systems, but if the thing is well documented and comes with > benefits > > (like staying in sync with other developers, allowing new features etc.= ) > I > > doubt that many people will really be minding this. > > > > > > cu > > Gerrit > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to " > > freebsd-questions-unsubscribe@freebsd.org" > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org"