cvs commit: src/sys/contrib/pf/net if_pflog.c if_pflog.h
if_pfsync.c if_pfsync.h pf.c pf_ioctl.c pf_norm.c pf_osfp.c
pf_table.c pfvar.h src/sys/contrib/pf/netinet in4_cksum.c
Bruce M Simpson
bms at spc.org
Thu Feb 26 02:38:52 PST 2004
On Thu, Feb 26, 2004 at 09:47:58AM +0100, Eric Masson wrote:
> What sort of Evil plans, please ?
Well, for one thing, I've been toying with the idea of IPSEC NAT passthrough.
This has been raised lately on various London community wireless lists.
I'd also like to get some means of filtering KaZaA out of my network. And
finding answers to the interesting problems you get when you introduce
a unidirectional path into the mix (satellite interfaces with telco/ether
return).
I feel a fresh codebase and a fresh mandate is needed, though, and pf seems
to fit the bill; I personally feel more confident attempting these things
with pf than with the existing code. I am also extremely pleased that the
enthusiasm generated by the pf import has resulted in other work getting
done which we wanted done before 5.3, as well as being appealing to our
prospective user base.
BMS
More information about the cvs-src
mailing list