From owner-freebsd-pf@FreeBSD.ORG Tue Aug 2 22:14:32 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7C41F106564A for ; Tue, 2 Aug 2011 22:14:32 +0000 (UTC) (envelope-from lobo@bsd.com.br) Received: from mail-gx0-f182.google.com (mail-gx0-f182.google.com [209.85.161.182]) by mx1.freebsd.org (Postfix) with ESMTP id 3F14A8FC0C for ; Tue, 2 Aug 2011 22:14:31 +0000 (UTC) Received: by gxk28 with SMTP id 28so194238gxk.13 for ; Tue, 02 Aug 2011 15:14:31 -0700 (PDT) Received: by 10.236.77.200 with SMTP id d48mr5446054yhe.137.1312323271225; Tue, 02 Aug 2011 15:14:31 -0700 (PDT) Received: from papi.localnet ([187.58.105.128]) by mx.google.com with ESMTPS id w1sm205453yhi.51.2011.08.02.15.14.29 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 02 Aug 2011 15:14:30 -0700 (PDT) From: Mario Lobo To: freebsd-pf@freebsd.org Date: Tue, 2 Aug 2011 19:14:22 -0300 User-Agent: KMail/1.13.7 (FreeBSD/8.2-STABLE; KDE/4.6.2; amd64; ; ) References: In-Reply-To: X-KMail-Markup: true MIME-Version: 1.0 Message-Id: <201108021914.22938.lobo@bsd.com.br> Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: pf rules for pptpd X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Aug 2011 22:14:32 -0000 On Tuesday 02 August 2011 16:20:24 Lyndon Nerenberg (VE6BBM/VE7TFX) wrote: > I'm wondering if anyone has come up with a method of allowing pptpd > and pf to get along. It seems that using the ppp interface up and > down scripts to add/delete interface-specific rules to pf is the > way to go. Are there any other methods people would recommend? > > --lyndon > This was the way I went. I started using pptpd but after a while (i said while but could have been an upgrade, a new port install, etc...), somehow, it started to randomly drop the connections, no matter what form of keep-alive I used. I spent several weeks trying to find out why to no avail. I finally gave up and switched to mpd5. I solved my problem and it has been rock solid ever since. -- Mario Lobo http://www.mallavoodoo.com.br FreeBSD since 2.2.8 [not Pro-Audio.... YET!!] (99% winblows FREE)