a b wrote: >> If you're using the open source IPFilter, then you should always compile >> IPFilter against the target kernel you want to run it on. >> >> This is because in order to work, it uses internal data structures and >> interfaces that can change from patch to patch of Solaris. >> >> Not ideal, I know...:( > > My understanding of the matter was that one of the aspects of your > hire for Sun Microsystems was to better integrate IPFilter into Solaris. > > Sun was supposed to produce the missing interfaces and make them > public so that IPFilter would no longer have to "peek" (and "poke"?) > into private kernel structs and interfaces. > > Has then this not taken place? > > If the answer is no, will it take place, and if so, when? ho ho ho ho.
If you download Solaris Express, you can find something that doesn't suffer from this problem. But the API used isn't in the final shape it needs to take and is just another private interface at present. Even if it were, it would be 6 months before I could use it in a Solaris 10 update. You've no idea how slowly the wheels turn to make an actual Solaris product in order to dot all the i's and cross all the t's. Darren
