OpenBSD/IPF 3.0
Darren Reed
http://openbsd30.ipfilter.org
src .tgz's should be around soonish.
in the next few weeks, I'll build and upload iso's.
If you must do it from source, IPFilter 3.4.23 contains all the scripts
and patches you need to patch-up a openbsd 3.0 distribution.
p...@icke-reklam.ipsec.nu
Thankx, i'll give it a try.
--
Peter Håkanson
IPSec Sverige (At the Riverside of Gothenburg, home of Volvo)
Sorry about my e-mail address, but i'm trying to keep spam out.
Remove "icke-reklam" and it works.
Berk S. Daemon
"Darren Reed" <ava...@caligula.anu.edu.au> wrote in message
news:3c45...@clarion.carno.net.au...
Finally! ;)
I'll try it out on my laptop. When's 4.x due?
Dave Uhring
Is there any reason that we should not continue to use your ipfilter
integrated into OpenBSD-2.9? The 3.0 version does not appear to offer
any improvements with regard to NAT/firewall/router functionality.
Kamase
here, but is http://openbsd30.ipfilter.org some kind of OpenBSD 3.0 Darren
Reed Special Edition?
Don't get me wrong but is this an official version approved by the OpenBSD
Team?
|| just wondering
"Darren Reed" <ava...@caligula.anu.edu.au> wrote in message
news:3c45...@clarion.carno.net.au...
Ian Linwood
<ava...@caligula.anu.edu.au> wrote:
Excellent!
I've been holding off going to 3.0 because of this PF thingy.
p...@icke-reklam.ipsec.nu
> Sorry, if I have missed something of major importance previously discussed
> here, but is http://openbsd30.ipfilter.org some kind of OpenBSD 3.0 Darren
> Reed Special Edition?
> Don't get me wrong but is this an official version approved by the OpenBSD
> Team?
I don't think you have to be approved by anoone to port software to
openbsd. The license for openbsd allows anyone to use the software
in any way they won't.
Which is the whole idea of Open Source !
> || just wondering
> "Darren Reed" <ava...@caligula.anu.edu.au> wrote in message
> news:3c45...@clarion.carno.net.au...
>> binary files for OpenBSD/i386 3.0 with IPFilter 3.4.23 are available at
>> http://openbsd30.ipfilter.org
>>
>> src .tgz's should be around soonish.
>>
>> in the next few weeks, I'll build and upload iso's.
>>
>> If you must do it from source, IPFilter 3.4.23 contains all the scripts
>> and patches you need to patch-up a openbsd 3.0 distribution.
>>
--
NoSpam...@maps_on.cadvision.com
wrote:
>Sorry, if I have missed something of major importance previously discussed
>here, but is http://openbsd30.ipfilter.org some kind of OpenBSD 3.0 Darren
>Reed Special Edition?
>Don't get me wrong but is this an official version approved by the OpenBSD
>Team?
As I understand it, the reason why IPF had to be pulled out of the
OpenBSD tree in the first place was that the OpenBSD team believed
that the IPF license of the time may have prevented somebody from
doing what Darren has done. Now that IPF is gone, anybody can
basically do whatever they like with the source.
You can have your own special edition too!
Allan
wrote:
>Sorry, if I have missed something of major importance previously discussed
>here, but is http://openbsd30.ipfilter.org some kind of OpenBSD 3.0 Darren
>Reed Special Edition?
>Don't get me wrong but is this an official version approved by the OpenBSD
>Team?
As I understand it, the whole reason why IPF had to be pulled from the
OpenBSD tree in the first place was to allow exactly this sort of
thing. It seems that it was believed by the OpenBSD team that the
license for IPF at the time may have prevented someone from doing what
Darren has done. Now that IPF is gone, anybody can go ahead and
change whatever they like with the source and distribute it too.
Satan D'Astout
you are really wasting your time now.
n3v
wow. thats pretty crazy. you've got style.
will you do other architecures?
Buck Pyland
When I was Darren's age, I would be annoyed as hell over something
like this. Nowadays, I'm just amused. Folks, don't worry about
this. Darren's still young. He'll get over this whole thing between
Theo and himself ... eventually. In the meantime, just use both of
their fine products anyway you like, and be happy.
--
Buck Pyland
bu...@stlbsd.org
http://www.stlbsd.org
Charles Roten
Way cool!
Will a SPARC port be forthcoming? I have this old LX that would make a
_dandy_ dedicated firewall.
Charles Roten
cro...@serv.net
Siddhartha Jain
This is really good. Licensing and ego issues apart, i think it gives
OBSD users more choice. People who missed IPF can have it now without
hassles and those who want can move ahead with PF.
In the future maybe more people will release their own editions and
finally we might have corporates like RH/Suse distributing ISOs with
several software bundled which the OBSD team can't because of
licensing issues. At the end of the day, me feels, OBSD is the winner.
mips
> you are really wasting your time now.
Did he sent back patches ? O:)~
More seriously, this means that he really take PF has a challenger for
ipf, instead of what he says. But on other hand this is funny to see
him becoming more and more ridiculous ...
mips
-=[warthog]=-
> More seriously, this means that he really take PF has a challenger for
> ipf, instead of what he says. But on other hand this is funny to see
> him becoming more and more ridiculous ...
Nawww. You're overanalyzing. I think Darren has found a GREAT way to piss
off Theo. Theo has grown comfortable in his title as "Biggest Asshole in
UNIX Community" and has completely discarded any interpersonal skill he may
have had in the past. If he had been a little more ... human ... he may
have come to some sort of workable agreement regarding IPF. But nooooo this
had to be a pissing contest.
And because of licensing, Theo will lose in the end. Theo has licensed his
software in such a way they Darren can take the OpenBSD distribution, rip
out pf, replace with ipf, and sell the CD's for half price or even *GASP*
let people download ISO images to try it out first.
-=[warthog]=-
Ted U
> And because of licensing, Theo will lose in the end. Theo has licensed his
> software in such a way they Darren can take the OpenBSD distribution, rip
> out pf, replace with ipf, and sell the CD's for half price or even *GASP*
> let people download ISO images to try it out first.
How is Theo losing again? He's the one who fought for an free license in
the first place. The stated goals of the project are a system that
anybody can take, modify, and sell.
--
Ted - gre...@heorot.stanford.edu - http://heorot.stanford.edu/grendel/
"Welcome to Stanford. There are no walls. No guards. But the campus
is three weeks in every direction. There is no escape, except death."
mips
Frankly i'm not sure that so many people will prefer buying CD from
Darren Reed instead of OpenBSD Team, even if it's half price. Another
thing i find funny, is all the people who have a preconceived idea.
Theo is saying what he think, and he say it louder. As i am same, i
respect it.
Now you can go back to Reed's home to get your reward for your good
action ...
mips
AD.
licensed his
> software in such a way they Darren can take the OpenBSD distribution,
rip
> out pf, replace with ipf, and sell the CD's for half price or even
*GASP*
> let people download ISO images to try it out first.
Huh? The OpenBSD team had a problem with the license because it stopped
people doing what Darren has just done. It is one of OpenBSDs goals to
allow people/companies to do that very thing.
The futility (possibly irony as well?) of Darren trying to annoy them by
doing something that they fought to allow anybody to do is immense.
Anton
sucahyo
I am new to Open BSD, just try to use it as firewall gateway, by
downloading version 3.0 I can successfully install squid, but when I
try NAT, I just can't do it right (don't work on non local). So, i try
to use the 2.9 version, and it works.
Your ipf maybe just what I need, but just recently i download the
snapshot of version 3.0, and I don't know if I am wrong before, but
now the NAT work and with new option of scrub in all (I don't know if
it really work).
If I have to choose, then I choose your's if I am upgrading, I choose
Theo's if I am doing from scratch. But for now I am using Theo's,
because I just tired to wait the download .................
John Meyer
>Huh? The OpenBSD team had a problem with the license because it stopped
>people doing what Darren has just done. It is one of OpenBSDs goals to
>allow people/companies to do that very thing.
>
>The futility (possibly irony as well?) of Darren trying to annoy them by
>doing something that they fought to allow anybody to do is immense.
>
To annoy is to do an outperforming project not related to OpenBSD and
attract all its users away. To harass is simply to take OpenBSD and
patch/alter it and still call it OpenBSD. If someone "harass" me with
my brain child of this level of quality and devotion, with due respect
to open source convention I have been fighting for, I would simply
litigate the offenders for trademark/copyright infringement as an
example for the open source community. Given freedom in general, and
in the name of freedom in particular, we can tell a bad apple from
good ones.
Bob
This isn't OpenBSD...this is your BSD distro with IPF. I hope they
slam you for using the OpenBSD name.
Why do this at all since you have made several posts trashing OpenBSD
against Net and Free?
Cyril Guibourg
> Theo is saying what he think, and he say it louder. As i am same, i
> respect it.
And so you are convinced it is sound ?
Désolé. Pas de baffe STP :) </EOPJ>
mips
> > respect it.
>
> And so you are convinced it is sound ?
No this is music :)
mips
Klick
booting. Why is it sending UDP packets to IP address 209.182.207.138 ?
What is your custom distribution doing? Is there a trojan in your
distrubtion that I should know about?
"Darren Reed" <ava...@caligula.anu.edu.au> wrote in message
news:3c45...@clarion.carno.net.au...
Fabrice Devaux
> Darren, I installed your binary distribution and sniffed the system
> after booting. Why is it sending UDP packets to IP address
> 209.182.207.138 ?
Maybe bevause 209.182.207.138 (or taltos.taltos.org) is a DNS server ?
> What is your custom distribution doing? Is there a trojan in your
> distrubtion that I should know about?
lol
greets,
Fabrice