>>164 これか openipf 笑 Date: Wed, 30 May 2001 13:39:57 JST From: Jeff Bachtel <sebastion@irelandmail.com> To: Nicholas Janzen <nj@third-net.com>, tech@openbsd.org Subject: Re: ipf
Theo will probably say "show me the code", but the fact is that a functional, stable packet filter implementation is non-trivial, especially one that is high-peformance.
Not to belittle the amount of work that anyone on any project has done, but OpenBSD started with the NetBSD codebase, and OpenSSH started with an older ssh release. And a _hell_ of a lot of work was done to get the two projects to the points they are at today.
If there was an older version of ipfilter that was free, then conceivably an OpenFilter could be created in 6 months. As it is ipfw or Drawbridge [1] are the only two IP packet filters I could find easily with BSD-style licenses. I don't even have an inkling how hard ipfw would be to modify, however the fact that it doesn't have a seperate project page and diff tarball is not encouraging.