Future of pf / firewall in FreeBSD ? - does it have one ?

Andreas Nilsson andrnils at gmail.com
Sat Jul 19 08:35:41 UTC 2014

On Sat, Jul 19, 2014 at 4:40 AM, Darren Pilgrim <
list_freebsd at bluerosetech.com> wrote:

> On 7/18/2014 4:06 AM, Gleb Smirnoff wrote:
>> K> b) We are a major release away from OpenBSD (5.6 coming soon) - is
>> K> following OpenBSD's pf the past? - should it be?
>> Following OpenBSD on features would be cool, but no bulk imports
>> would be made again. Bulk imports produce bad quality of port,
>> and also pf in OpenBSD has no multi thread support.
> I would much rather have a slower pf that actually supports modern
> networking than a faster one I can't use due to showstopper flaws and
> missing features.

So would I. Not that we use pf, but anyway.

> There is currently no viable firewall module for FreeBSD if you want to do
> things like route IPv6.

Isn't that possible with ipfw?

Perhaps the pf guys in OpenBSD could be convinced to start openpf and have
porting layer as in openzfs.

Best regards

