On 2/13/06, Tony Sterrett <[EMAIL PROTECTED]> wrote: > I'm looking at the tradeoff of porting bpf with states from linux to > OpenBSD from linux. Daniel Hartmeier in Design and Performance of > the "OpenBSD Stateful Packet Filter (pf)" says that pf is more > efficient than bpf, so it may be pointless. On the other hand having > this facility would increase the richness of our toolkit.
what you want to do is add the ability to attach a bpf filter to a pf rule, though i wouldn't try to wedge this functionality into pf.conf's grammar. i still haven't come up with much reason why you need bpf to express a rule pattern that can't be done with pf.
