[prev in list] [next in list] [prev in thread] [next in thread]
List: freebsd-pf
Subject: Re: Bridging + pf in a production environment
From: Max Laier <max () love2party ! net>
Date: 2005-01-13 12:16:00
Message-ID: 200501131316.11379.max () love2party ! net
[Download RAW message or body]
On Thursday 13 January 2005 08:57, Ballance, Robert T wrote:
> Howdy list,
>
> My university is starting to seriously look into migrating from our
> convoluted Slackware Linux + iptables bridging solution to a FreeBSD + pf
> bridging solution.
>
> I've been reading around about it, after the mention by Solarflux about
> there being problems currently with bridging with pf on FreeBSD. Which
> worries me, he mentioned the option of using OpenBSD, which, is an option,
> but whatever we commit to, we're going to commit to for a good couple of
> years. (We have been using Slackware for about 2 years thus far)
>
> Is anybody currently working on bringing of if_bridge from Net/OpenBSD as
> Max suggests
> (http://lists.freebsd.org/pipermail/freebsd-pf/2005-January/000734.html)
>
> If not, if anybody could really outline how fixing this problem could be
> fixed (past maybe just importing if_bridge) I might be able to convince my
> employer to pay me to work on it ;)
> (after all, I'm just a measely student worker :P)
>
> Let me know :)
There is somebody working on it, but it is yet unclear how long until we see
results from that. Meanwhile, you might want to try the patch for bridge.c
from Pyun YongHyeon which improves the situation already:
http://www.kr.freebsd.org/~yongari/patches/bridge.patch
There might be a newer version of this patch here:
http://www.pfsense.org/downloads/bridge.patch.041215
--
/"\ Best regards, | mlaier@freebsd.org
\ / Max Laier | ICQ #67774661
X http://pf4freebsd.love2party.net/ | mlaier@EFnet
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
[Attachment #3 (application/pgp-signature)]
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic