On Tue, Aug 20, 2019 at 11:49:18AM +0200, Kristof Provost wrote: > One thing I’ve thought of trying, and that might be an interesting stepping > stone, is to create a port (/usr/ports/net/opf or whatever) of OpenBSD’s pf. > In that version it’d be acceptable to not fix any of the above issues. It’d > still give users to option of getting the new syntax. I’d expect this to be > a relatively straightforward exercise. That would be cool, but only if FreeBSD PF can not be "fixed" to support OpenBSD PF syntax.
> In principle there’s nothing to stop us from doing that same work in base, > but we’re **NOT** going to import a fourth firewall. We’re just not. Are you sure? https://2019.eurobsdcon.org/talk-speakers/#NPF. At least I hope the import is pfil based. Regards, meka
signature.asc
Description: PGP signature
