As some of you may know, fwbuilder.org is a cross-platform, graphical firewall management utility that supports iptables, ASA, PIX, FWSM, Cisco router access lists, pf, ipfw, ipfilter, and HP ProCurve ACL firewalls. Vadim Kurland and Mike Horn, the lead fwbuilder developers, have begun work on providing complete pf.conf import functionality, the last piece that was missing to provide 100% pf support. This work is a direct result of several customers expressing interest in the addition of pf configuration import and they expect the work to be completed by this summer.
In order for them to be confident that as many permutations as possible are covered, they are looking for BSD users who can share their real world pf.conf files. The configs need to contain valid IP addresses, but users can sanitize the configs by globally replacing “real” IP addresses with “fake” IP addresses. Users who are concerned about privacy can encrypt their file with Vadim’s public PGP key:http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x8B08DC58.
You can send your pf.conf file(s) to configs at netcitadel dot com. They will also be looking for testers as the work nears completion. Please help spread the word through social media and by posting to other mailing lists that may be interested.