Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Volker
On 10/04/08 01:22, Bruce Cran wrote: > On Sat, 04 Oct 2008 00:40:45 +0200 > Volker <[EMAIL PROTECTED]> wrote: >> You seem to have a rule like: >> >> pass ... on tun0 from any to tun0 ... >> >> If you change that into: >> >> pass ... on tun0 from any to (tun0) ... >> >> pf will happily parse your ru

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Bruce Cran
On Sat, 04 Oct 2008 00:40:45 +0200 Volker <[EMAIL PROTECTED]> wrote: > You seem to have a rule like: > > pass ... on tun0 from any to tun0 ... > > If you change that into: > > pass ... on tun0 from any to (tun0) ... > > pf will happily parse your rules and activate your firewall even while > tu

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Volker
On 10/04/08 00:05, Bruce Cran wrote: > On Fri, 3 Oct 2008 04:38:24 -0700 > Jeremy Chadwick <[EMAIL PROTECTED]> wrote: >> I've figured out what the problem is. This is not good, and is >> guaranteed to bite other people. I'd like to believe this is an >> rc-related problem, but I'm not sure how to

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Bruce Cran
On Fri, 3 Oct 2008 04:38:24 -0700 Jeremy Chadwick <[EMAIL PROTECTED]> wrote: > I've figured out what the problem is. This is not good, and is > guaranteed to bite other people. I'd like to believe this is an > rc-related problem, but I'm not sure how to fix it. > > The problem in my case: > > T

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Gary Palmer
On Fri, Oct 03, 2008 at 04:17:03AM -0700, Jeremy Chadwick wrote: > On Thu, Oct 02, 2008 at 09:57:55PM +0100, Bruce Cran wrote: > > I recently upgraded my i386 router from 7.0 to 7.1-PRERELEASE. I > > rebooted it today but despite pf_enable="YES" being in /etc/rc.conf no > > rules got loaded du

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Volker
On 12/23/-58 20:59, Bruce Cran wrote: > I recently upgraded my i386 router from 7.0 > to 7.1-PRERELEASE. I rebooted it today but despite pf_enable="YES" > being in /etc/rc.conf no rules got loaded during boot, despite pf itself > having been enabled: > > router# pfctl -s rules > router# pfctl -e

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Jeremy Chadwick
On Fri, Oct 03, 2008 at 04:17:03AM -0700, Jeremy Chadwick wrote: > On Thu, Oct 02, 2008 at 09:57:55PM +0100, Bruce Cran wrote: > > I recently upgraded my i386 router from 7.0 to 7.1-PRERELEASE. I > > rebooted it today but despite pf_enable="YES" being in /etc/rc.conf no > > rules got loaded du

Re: pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-03 Thread Jeremy Chadwick
On Thu, Oct 02, 2008 at 09:57:55PM +0100, Bruce Cran wrote: > I recently upgraded my i386 router from 7.0 to 7.1-PRERELEASE. I > rebooted it today but despite pf_enable="YES" being in /etc/rc.conf no > rules got loaded during boot, despite pf itself having been enabled: > > router# pfctl -s ru

pf rules not being loaded during boot on 7.1-PRERELEASE

2008-10-02 Thread Bruce Cran
I recently upgraded my i386 router from 7.0 to 7.1-PRERELEASE. I rebooted it today but despite pf_enable="YES" being in /etc/rc.conf no rules got loaded during boot, despite pf itself having been enabled: router# pfctl -s rules router# pfctl -e -f /etc/pf.conf pfctl: pf already enabled [connec