From owner-freebsd-net@FreeBSD.ORG  Mon Oct 18 18:40:44 2010
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 04976106567A;
	Mon, 18 Oct 2010 18:40:44 +0000 (UTC)
	(envelope-from ermal.luci@gmail.com)
Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com
	[209.85.214.54])
	by mx1.freebsd.org (Postfix) with ESMTP id 5D8738FC14;
	Mon, 18 Oct 2010 18:40:41 +0000 (UTC)
Received: by bwz16 with SMTP id 16so4733bwz.13
	for <multiple recipients>; Mon, 18 Oct 2010 11:40:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:mime-version:sender:received:from:date
	:x-google-sender-auth:message-id:subject:to:content-type;
	bh=gYpdvLJPkjZwsO12A/qbZFLQuhW3hn/+1V6u6O7rLp0=;
	b=HHGozPI6HMa3fVeAt6nNSctPYdNoONAiEmXOtv29QM3p06qoCARSXhq3BdTdoQ8c2c
	ef4X0Ghz/huwkr2Lh5nridvPY2Zb+sOYp4wXeLKWepNVW+zLzKJiWBQmkY6BsEHkbviT
	UFSfCpxhiQBRDoNDJHWOSeIDSYXtsywL0WBEM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:sender:from:date:x-google-sender-auth:message-id
	:subject:to:content-type;
	b=RN2B7ff4aZvMGiS0AyV897KKjaxIanils4EEo3wMWKgQNd4VmTEndweK5f4pRWMPkZ
	9/FqnVGMotJIAkfbxOQQT1G05PfM0tDmUdkLzOJoo7KdENEsF8bvyphxaoQ6US9/H2ym
	5nixuafaNEqa8nl+FHzcyG2jLfclOGYPhrb54=
Received: by 10.204.99.131 with SMTP id u3mr4825872bkn.41.1287425465205; Mon,
	18 Oct 2010 11:11:05 -0700 (PDT)
MIME-Version: 1.0
Sender: ermal.luci@gmail.com
Received: by 10.204.35.68 with HTTP; Mon, 18 Oct 2010 11:10:44 -0700 (PDT)
From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= <eri@freebsd.org>
Date: Mon, 18 Oct 2010 19:10:44 +0100
X-Google-Sender-Auth: 8IlNRlSknaXVNiWcboSW7deCKz0
Message-ID: <AANLkTinXNRKSwjuOeQkDTANhSSbHYHZnf4SvaFHbEdrg@mail.gmail.com>
To: freebsd-pf@freebsd.org, freebsd-net <freebsd-net@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1
Cc: 
Subject: [PATCH] pf(4) patch from OpenBSD 4.5
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Oct 2010 18:40:44 -0000

Hello,

the link http://people.freebsd.org/~eri/pf45_1.diff has the patch for
pf(4) as of OpenBSD 4.5 version.
The patch is against HEAD.
After OpenBSD 4.5 the syntax has changed and this is the reason for
such an 'old' version patch.

After importing this one the work will go on the newest version and
decisions on it will than be done.

Be aware that this patch has even support for VIMAGE/VNET.
It will enable you to run pf(4) with[in] jails+vnets or just vnets
themselves with separate rulesets
and policies.
pfsync(4) can be loaded as a module also with this patch.

Feedback is very welcome.

Regards,
-- 
Ermal