On 31 Dec 2005 14:35:33 -0800, Randal L. Schwartz <[EMAIL PROTECTED]> wrote: > I have a fairly uncomplicated pf.conf (which I'm willing to share if > asked). When my OpenBSD 3.8 (but this also showed up on 3.7) box > reboots, it ends up staying in "safe" mode (ssh enabled, no pings > enabled), as set up in the /etc/rc file.
You didn't include your pf.conf so figuring out why it failed is pretty tough. But I can almost guarantee that it's because you have DNS names in your pf.conf and your DNS server isn't able to get to the Internet prior to the ruleset being loaded. > Since pings aren't enabled, I'm required to repeatedly try to ssh in, > and when that works, I issue "pfctl -v -f /etc/pf.conf", and it loads > just fine! > > What's different between the time that pfctl is called right after > /etc/netstart (which apparently is failing to load the rules), and > pfctl is called by me when I've finally logged in? And unfortunately, > this is a remote box, so I can't watch the console. :( > > Any ideas? -ME -- http://erdelynet.com/ Support OpenBSD! http://www.openbsd.org/orders.html
