> Hi all, > > Somebody knows where I can find a good shell script to sync > pf.conf rules > over a several Openbsd firewalls using CARP? > > many thanks. Hello, For this to work, you need ssh-agent and to setup /usr/ports/sysutils/tentakel on your admin workstation.
#!/bin/sh
hosts[0]=172.16.42.1
hosts[1]=172.16.43.1
for x in ${hosts[*]}; do
scp pf.conf [EMAIL PROTECTED]:/etc/
done
#now reload on firewalls
tentakel -g my_firewalls "pfctl -f /etc/pf.conf"
#end
Kind regards
Didier
