pf in 9.0

Seeker

Seeker

FreeBSD 8.X and prior is using the same version of PF as OpenBSD 4.1
FreeBSD 9.X and later is using the same version of PF as OpenBSD 4.5
Click to expand...

1) Can anyone point me, to the changelog, between those 2?

2) Looking at the pfctl command, I don't see a way for it to report pf's version. Or am I blind?

3) I've heard NAT doesn't work with pf in 9.0? Can anyone confirm working NAT with pf of 9.0?

Thanks in advance.
 
Same here, works fine on my firewall/router. I would keep pf(4) as a loadable kernel module though (the default in GENERIC), I remember there were reports of problems with state expiry if it was compiled into the kernel.
 
da1 said:
2) You are not blind. You need to have a look @ the source files for it.
Click to expand...
That is not going to happen. :p

Ok and now 1), where is a list of changes between pf 4.1 and pf 4.5?
How can I know, what are new features?
 
Well ... I know this answer will not be the one you're after but again, you can have a look @ the sources.

I agree, there should be some doc stating the changes but I for one, do not know if we have such a thing. Finding what version of pf a certain release runs, was always pain.
 
As far as I know the rule syntax hasn't changed or if it has it's still compatible with version 4.1 syntax.
 
@kpa: correct. The idea behind importing an older version of pf was that it should not break current setups.
 
You must log in or register to reply here.
Back
Top