subject:"PF set skip on interface group"

PF set skip on interface group

2010-10-25 Thread Patrick Lamaiziere

Hello,

(snaphot 4.8/amd64)

I'm trying to use a pf.conf hardware independent using some interface
groups.

PacketFilter Set skip does not look to work fine with interface group.

# ifconfig IFPFSYNC
bnx0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST mtu 1500
lladdr 00:22:19:5b:ad:da
description: PFSYNC
priority: 0
groups: IFPFSYNC
media: Ethernet autoselect (1000baseT full-duplex,master)
status: active
inet 192.168.255.253 netmask 0xfffc broadcast
192.168.255.255 inet6 fe80::222:19ff:fe5b:adda%bnx0 prefixlen 64
scopeid 0xb

and in pf.conf :
set skip on { lo, IFPFSYNC }

# pfctl -vvvs Interfaces -i bnx0
bnx0

# pfctl -vvvs Interfaces -i IFPFSYNC
IFPFSYNC (skip)

I think that bnx0 should be set to skip too, no?

Also pflog shows that bnx0 is not skiped.

Thanks, regards.

Re: PF set skip on interface group

2010-10-25 Thread Henning Brauer

* Patrick Lamaiziere patf...@davenulle.org [2010-10-25 13:47]:
 PacketFilter Set skip does not look to work fine with interface group.

skip on ifgroups is indeed not implemented (but pbly should and that
isn't hard either)

-- 
Henning Brauer, h...@bsws.de, henn...@openbsd.org
BS Web Services, http://bsws.de
Full-Service ISP - Secure Hosting, Mail and DNS Services
Dedicated Servers, Rootservers, Application Hosting

PF set skip on interface group

Re: PF set skip on interface group

2 matches

Site Navigation

Mail list logo

Footer information