From owner-freebsd-net@FreeBSD.ORG  Thu Feb 10 16:38:21 2011
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 176D010656CB
	for <freebsd-net@freebsd.org>; Thu, 10 Feb 2011 16:38:21 +0000 (UTC)
	(envelope-from batcilla@gmail.com)
Received: from mail-yw0-f54.google.com (mail-yw0-f54.google.com
	[209.85.213.54])
	by mx1.freebsd.org (Postfix) with ESMTP id C41FF8FC1C
	for <freebsd-net@freebsd.org>; Thu, 10 Feb 2011 16:38:20 +0000 (UTC)
Received: by ywl2 with SMTP id 2so684063ywl.13
	for <freebsd-net@freebsd.org>; Thu, 10 Feb 2011 08:38:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:sender:in-reply-to:references:date
	:x-google-sender-auth:message-id:subject:from:to:cc:content-type;
	bh=+Si6mLTSwNQdMHf823Zy2bKKZVx9zf/+p4IP5Y2d1dE=;
	b=leMkI9V8O4b5JvqOKu6ni1Hta1xuLGpAcI8yS0gqwpRNDrPMBWmPF27Dny92Tj11lZ
	ybJM0YU2AVWAEeioivBI7Us8A6Dg5vApoGlRYNAFzl9biHe4cjMRY5FHj7MKWNPipkRS
	Ypsz8BJQgP/5qok+uHmXapkh5Qb1EVgmL1chA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:sender:in-reply-to:references:date
	:x-google-sender-auth:message-id:subject:from:to:cc:content-type;
	b=o/L9IZioaSNNun+IlMu8QA7t6FRPH2LZIkKDUgz9gGrNuXSUXSzjo3hJS44EJncIup
	W1YDiy9GgYUdAcK21kgCDrYRVDISWri+fZ7O+m3/Q4uTDj2ByaRIpzg1CejEFMmZe8Ko
	L9Hz5HCMDI3erKpaSm2NRR6lsUvhC7YKeWgg8=
MIME-Version: 1.0
Received: by 10.229.224.212 with SMTP id ip20mr16072600qcb.237.1297355898802; 
	Thu, 10 Feb 2011 08:38:18 -0800 (PST)
Sender: batcilla@gmail.com
Received: by 10.229.220.198 with HTTP; Thu, 10 Feb 2011 08:38:18 -0800 (PST)
In-Reply-To: <20110210155622.GA60117@icarus.home.lan>
References: <20110210155622.GA60117@icarus.home.lan>
Date: Thu, 10 Feb 2011 18:38:18 +0200
X-Google-Sender-Auth: dRswkdsTsOcx3ZQoDOQWVdLYY5s
Message-ID: <AANLkTi=fStghe-KqxaoCNfCNGx9nAW0Oepj2eF+q7C=h@mail.gmail.com>
From: Peter Lavee <pbl@unidata.com.ua>
To: Jeremy Chadwick <freebsd@jdc.parodius.com>
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-net@freebsd.org
Subject: Re: Reliable PCI wifi cards, and layer 7 filtering
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Feb 2011 16:38:21 -0000

2011/2/10 Jeremy Chadwick <freebsd@jdc.parodius.com>
[skip...]

> I plan on using pf for the NAT and firewall layer.  ipfw will not be
> used (I have long since moved away from it).  I've got solutions for
> everything except two items:
>
> 1) Wireless hardware support
>   - What consumer PCI cards are known to be reliable and have good
>     support on FreeBSD?
>
[skip..]
I' suggest to use PCI-mPCI adaptor and Wistron Neweb Atheros based cards. It
is good for an AP.
Use together with FreeBSD 8.1 or later.

2) Layer 7 filtering
>
>
[skip...]
I suppose you can use pf+squid as transparent filtering proxy ?

I believe not much changed since that post:
http://lists.freebsd.org/pipermail/freebsd-pf/2005-August/001450.html


Item #2 above seems to be the kicker.  Is there anything in the works
> regarding such a capability?  I'd be more than happy to test out code or
> whatever.
>
> //batcilla