Bacula File/Storage Connection Woes using PF
Dalibor Gudzic
dalibor.gudzic at gmail.com
Wed Mar 26 15:07:04 UTC 2008
On Wed, Mar 26, 2008 at 12:47 PM, Jeremy Chadwick <koitsu at freebsd.org>
wrote:
> This brings up another situation: there's no version number of pf in
> FreeBSD that I can find. The OpenBSD docs continually say "as of
> OpenBSD x.y". This confuses people, who when using pf under FreeBSD,
> have no knowledge of what version of pf we're using. What version is in
> RELENG_6? 7? CURRENT? I didn't know until a few minutes ago --
> because I went to cvsweb and had to look up the CVS commit messages
> myself:
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/contrib/pf/net/pf.c
>
> Now that I know, I can make appropriate adjustments. But requiring
> users to look at CVS commit messages is a bit unrealistic, don't you
> think? Maybe I should submit a PR asking that the version of pf pulled
> into FreeBSD be kept in the pf(4), pf.conf(5), and pfctl(8) manpages?
> What do you suggest?
>
> > Our cousins over the road in the OpenBSD neighbourhood have done this
> > precisely because of the issues caused in prior versions of PF by using
> > stateless rules and/or establishing TCP state on anything other than the
> 3
> > way handshake.
>
> Yep, aware of that -- except that users have no idea as to whether the
> implicit "keep state" on every rule applies to FreeBSD or not, or if
> it's "safe" or not, because OpenBSD != FreeBSD. They read the OpenBSD
> docs and go "errr... so what version is FreeBSD using?"
>
From: http://pf4freebsd.love2party.net/
Status
The port is part of the base system of FreeBSD 5.X as of March, 8th 2004.
- In RELENG_5 - pf is at OpenBSD 3.5
- In RELENG_6 - pf is at OpenBSD 3.7
- In RELENG_7 - pf is at OpenBSD 4.1
- In HEAD - pf is at OpenBSD 4.1 - at this time.
-
It has been said several times on the list as well. :)
More information about the freebsd-pf
mailing list