Future of pf / firewall in FreeBSD ? - does it have one ?
Eduardo Morras
emorrasg at yahoo.es
Mon Jul 21 09:13:52 UTC 2014
On Sun, 20 Jul 2014 21:35:25 +0300
Odhiambo Washington <odhiambo at gmail.com> wrote:
> So to summarize (probably):
>
> Someone needs to decide whether or not they want FreeBSD or OpenBSD
> when it comes to PF.
> It's a simple decision to make:)
> You draw a two-column table with FreeBSD and OpenBSD on each one, do
> your analysis and decide where to pledge your allegiance.
... Not FreeBSD and OpenBSD discussion, but pf on FreeBSD and pf on OpenBSD, and note that I don't use the word 'versus'/'vs.'
>
> Debate CLOSED!
No think so. I can think some ideas not discussed in this thread,
a) One of the best parts of OpenBSD pf is the configure syntax. Could it be implemented in ipfw? Different apps with same config language.
b) I'm not a kernel, pf or ipfw developer, but in user space, threading is not the only way to get smp, you can use fork or multiple processes, see f.ex. PostgreSQL, or varnish with its varnishd, adm, log.. different specialiced bins for same app.
I know (because I discovered it in the thread) there are other conflict points as network stack, vm between OpenBSD and FreeBSD, but perhaps we can dodge the problem using other way.
--- ---
Eduardo Morras <emorrasg at yahoo.es>
More information about the freebsd-questions
mailing list