subject:"How to get pf to wait for ng0"

Re: How to get pf to wait for ng0

2009-09-20 Thread Sam Fourman Jr.


 Take a look at what /etc/rc.d/ppp does

 Probably you need a script that runs after ng0 comes up and does
 something similar.


I found this, can I just paste it into /usr/local/etc/rc.d/mpd ? I am
not very versed in shell scripting

ppp_poststart()
{
# Re-Sync ipfilter and pf so they pick up any new network interfaces
#
/etc/rc.d/ipfilter quietresync
/etc/rc.d/pf quietresync
}



Sam
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: How to get pf to wait for ng0

2009-09-20 Thread krad

2009/9/20 Sam Fourman Jr. sfour...@gmail.com

 
  Take a look at what /etc/rc.d/ppp does
 
  Probably you need a script that runs after ng0 comes up and does
  something similar.


 I found this, can I just paste it into /usr/local/etc/rc.d/mpd ? I am
 not very versed in shell scripting

 ppp_poststart()
 {
# Re-Sync ipfilter and pf so they pick up any new network interfaces
#
/etc/rc.d/ipfilter quietresync
/etc/rc.d/pf quietresync
 }



 Sam
 ___
 freebsd-questions@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/freebsd-questions
 To unsubscribe, send any mail to 
 freebsd-questions-unsubscr...@freebsd.org


can you not add the line

cloned_interfaces=ng0

to rc.conf(.local) it will create the pseudo interface very early on.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: How to get pf to wait for ng0

2009-09-20 Thread cpghost

On Sat, Sep 19, 2009 at 10:30:14PM -0500, Sam Fourman Jr. wrote:
 Hello list,
 
 I am trying to use FreeBSD 8 RC1 to setup L2 tunnels via mpd5.
 My problem is the pf.conf file is never parsed because ng0 does not
 exist yet on startup
 
 ng0 is this case is DSL PPPoE to our local telco for internet access.
 after the DSL dials up (via mpd5) if I do pfctl -d  pfctl -e -f
 /etc/pf.conf everything works as expected.
 
 What is the best way to get pf to wait and parse the ruleset until
 after ng0 exists?

That old problem again... ;-)

My (somewhat shaky) work around is this:

1. In /etc/rc.d/NETWORKING, add the line
 # REQUIRE: mpd

2. In /usr/local/etc/rc.d/mpd5, make sure the line
 # PROVIDE: mpd
   is present

3. In /usr/local/etc/rc.d/mpd5, add
 sleep 10
   at the bottom.

   (That's where my solution is shaky: 10 secs is more than enough
   for me on PPPoE, but it may not be enough for dial-up modems etc.)

4. In /etc/rc.d/pf, add NETWORKING to the # REQUIRE: line:
 # REQUIRE: FILESYSTEMS netif pflog pfsync NETWORKING

5. In /etc/rc.d/named, add NETWORKING to the # REQUIRE: line:
 # REQUIRE: SERVERS cleanvar NETWORKING

This setup will effectively run mpd5 *before* pf, and will
also wait (hopefully) long enough for mpd5 to set up ng0.
Then, when pf runs, ng0 will be already there.

Of course, there is more than one way to do it. It just happens
to work here.

 Sam Fourman Jr.

-cpghost.

-- 
Cordula's Web. http://www.cordula.ws/
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

How to get pf to wait for ng0

2009-09-19 Thread Sam Fourman Jr.

Hello list,

I am trying to use FreeBSD 8 RC1 to setup L2 tunnels via mpd5.
My problem is the pf.conf file is never parsed because ng0 does not
exist yet on startup

ng0 is this case is DSL PPPoE to our local telco for internet access.
after the DSL dials up (via mpd5) if I do pfctl -d  pfctl -e -f
/etc/pf.conf everything works as expected.

What is the best way to get pf to wait and parse the ruleset until
after ng0 exists?

Sam Fourman Jr.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: How to get pf to wait for ng0

2009-09-19 Thread RW

On Sat, 19 Sep 2009 22:30:14 -0500
Sam Fourman Jr. sfour...@gmail.com wrote:

 Hello list,
 
 I am trying to use FreeBSD 8 RC1 to setup L2 tunnels via mpd5.
 My problem is the pf.conf file is never parsed because ng0 does not
 exist yet on startup
 
 ng0 is this case is DSL PPPoE to our local telco for internet access.
 after the DSL dials up (via mpd5) if I do pfctl -d  pfctl -e -f
 /etc/pf.conf everything works as expected.
 
 What is the best way to get pf to wait and parse the ruleset until
 after ng0 exists?

Take a look at what /etc/rc.d/ppp does

Probably you need a script that runs after ng0 comes up and does
something similar. 
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org

Re: How to get pf to wait for ng0

Re: How to get pf to wait for ng0

Re: How to get pf to wait for ng0

How to get pf to wait for ng0

Re: How to get pf to wait for ng0

5 matches

Site Navigation

Mail list logo

Footer information