Remove ipf. Darren Reed has interpreted his (old, new, whichever)

licence in a way that makes ipf not free according to the rules we
established over 5 years ago, at www.openbsd.org/goals.html (and those
same basic rules govern the other *BSD projects too).  Specifically,
Darren says that modified versions are not permitted.  But software
which OpenBSD uses and redistributes must be free to all (be they
people or companies), for any purpose they wish to use it, including
modification, use, peeing on, or even integration into baby mulching
machines or atomic bombs to be dropped on Australia.  Furthermore, we
know of a number of companies using ipf with modification like us, who
are now in the same situation, and we hope that some of them will work
with us to fill this gap that now exists in OpenBSD (temporarily, we
hope).

1 files changed, 0 insertions, 21 deletions

diff --git a/share/ipf/nat.2 b/share/ipf/nat.2
deleted file mode 100644
index badec5edb3f..00000000000
--- a/share/ipf/nat.2
+++ /dev/null
@@ -1,21 +0,0 @@
-		 Miscellaneous NAT Configuration Tips
-
-Don't forget to add "net.inet.ip.forwarding=1" to /etc/sysctl.conf or NAT will
-not work.  NAT requires IP packet forwarding.
-
-Don't forget to add "option IPFILTER" (and maybe "option IPFILTER_LOG"
-if you want ipmon(8) to work) to the kernel config file or NAT will
-not work.  NAT requires the IPF packet filter.
-
-You must have IPF enabled even if you aren't using it for anything or
-NAT will not work.  The standard way to do this is to make sure
-/etc/ipf.rules is installed and edit /etc/rc.conf changing
-"ipfilter=NO" to "ipfilter=YES" then reboot.
-
-When you bring up NAT it needs the interface to have an address.  If you are
-using the ppp0 interface unless you start pppd from /etc/rc you cannot start
-NAT there.  Instead, in the /etc/ppp/ip-up shell script add
-
-/sbin/ipnat -CF -f /etc/ipnat.rules
-
-to start NAT when the link comes up and the interface has an address.