From owner-freebsd-current@FreeBSD.ORG Sat Sep 22 21:39:51 2012 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D4559106566C for ; Sat, 22 Sep 2012 21:39:51 +0000 (UTC) (envelope-from levitch@iglou.com) Received: from rdsmtp.iglou.com (rdsmtp.iglou.com [192.107.41.63]) by mx1.freebsd.org (Postfix) with ESMTP id 8CFDF8FC0A for ; Sat, 22 Sep 2012 21:39:51 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=iglou.com; s=alpha; h=Content-Type:MIME-Version:References:Message-ID:In-Reply-To:Subject:cc:To:From:Date; bh=/14zm/Tail6d91t/BL3zcLv85Y5hJTzeu4T4FK54FdM=; b=TQrYPu/AwxuV8Pz7QOMf2ZrGpaI6HAefIWNQ9loHCrLcKgV3+vq7fqJwuuCYCBwBB+j1WweQkuAjEmOveE4rFvLeqaWa4zQCelhNxpMmfWpPnUUbJHhh0dzC5eBTH3O+wl42tLmEd+0dnfzVquDl6UXghkGiloIkk5P8y4+uegA=; Received: from iglou4.iglou.com ([192.107.41.39]:41281 helo=mail.iglou.com) by rdsmtp.iglou.com with esmtpa (Exim MTA/8.19.3) (envelope-from ) id 1TFXQV-0000cW-0c by authid with igloumta_auth for freebsd-current@freebsd.org; Sat, 22 Sep 2012 17:39:51 -0400 Received: from shell1.iglou.com ([192.107.41.17]:42219 helo=shell1) by mail.iglou.com with esmtps (TLS cipher TLSv1:AES256-SHA:256) (Exim MTA/8.19.3) (envelope-from ) id 1TFXQU-0004mw-KG; Sat, 22 Sep 2012 17:39:50 -0400 Date: Sat, 22 Sep 2012 17:39:50 -0400 (EDT) From: Darrel X-X-Sender: levitch@shell1 To: Fbsd8 In-Reply-To: <505DB5CC.4010707@a1poweruser.com> Message-ID: References: <20120918205617.02ee281e@fabiankeil.de> <505DB5CC.4010707@a1poweruser.com> User-Agent: Alpine 2.00 (GSO 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Originating-IP: 192.107.41.17 X-IgLou-Customer: 3cb6f76205bd20f518810676a67a982b X-Mailman-Approved-At: Sun, 23 Sep 2012 01:55:52 +0000 Cc: freebsd-current@freebsd.org Subject: [solved] manual page | zpool-features < discontinue PF X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Sep 2012 21:39:51 -0000 > snip >> >> Actually, I am becoming suspicious that FreeBSD does not maintain a OpenBSD >> Packet Firewall that survives upgrades. Perhaps I should just take all of >> the Packet Firewall stuff out of my kernel and learn to use ipfw2. >> >> >> Darrel >> >> > > On the subject of OpenBSD Packet Firewall > > OpenBSD 4.5 version of PF firewall which is included with the base FreeBSD > 8.x and 9.x releases is no longer supported by OpenBSD and very back level. > > The most current version of OpenBSD is 5.1. PF version 5.0 changed the syntax > of the NAT statement making PF no longer backwards compatible which breaks > some Freebsd standard, so updated versions of OpenBSD PF will no longer be > mass ported to FreeBSD. Any bug fix code to OpenBSD PF will have to be > incorporated by hand into FreeBSD's version of PF from this point on. > > The following will shine some more light on the subject. > > http://www.freebsd.org/cgi/query-pr.cgi?pr=167057 > > http://lists.freebsd.org/pipermail/freebsd-pf/2012-September/006740.html > > Second reply. I intended to change the subject line to solved. Just for informational purposes, you might not want to do any firewall comparison on the OpenBSD misc list. A Packet Firewall developer responded to me personally, writing that the signal-to-noise ratio was too high and to refrain from posting to the list. So much for solving problems and sharing ideas. Darrel