Using OpenBSD guest as PF firewall
Mateusz Piotrowski
0mp at FreeBSD.org
Wed Nov 4 21:40:36 UTC 2020
On 11/4/20 8:49 PM, Paul Pathiakis via freebsd-virtualization wrote:
> Thank you.
> I didn't know they had never 're-synced'.
> Paul
Just for the record, the pf version currently available in FreeBSD is not just an old OpenBSD pf.
See the note in the PF chapter in the handbook (https://www.freebsd.org/doc/handbook/firewalls-pf.html):
"Warning:
When reading the PF FAQ, keep in mind that FreeBSD's version of PF has diverged substantially from
the upstream OpenBSD version over the years. Not all features work the same way on FreeBSD as they
do in OpenBSD and vice versa."
Cheers!
>
> On Wednesday, November 4, 2020, 2:48:20 PM EST, Thomas Laus <lausts at acm.org> wrote:
>
> Paul Pathiakis [pathiaki2 at yahoo.com] wrote:
>> Hi,
>> Is there a reason you would want to use OpenBSD versus FreeBSD?
>> FreeBSD has pf and I use it on my server at home.
>>
>> Are you exploring OpenBSD? Did you not know that pf is an
>> available firewall on FreeBSD?
>>
> The OpenBSD PF firewall is several revisions ahead and more inte-
> grated than one in FreeBSD. The PF versions diverged in OpenBSD
> 4.7 and the one in FreeBSD was left behind. I use them both
> on their respected OS. It was very recent in bhyve development
> that pci-passthru was finally operational with an OpenBSD guest
> and I was building a new server and wanted to test things out.
>
> Tom
>
More information about the freebsd-virtualization
mailing list