Date: Mon, 28 Jan 2008 15:27:04 -0800 From: Gavin Spomer <spomerg@cwu.EDU> To: freebsd-pf@freebsd.org Subject: Re: How does /dev/pf get created? Message-ID: <479DF4480200009000013240@hermes.cwu.edu>
next in thread | raw e-mail | index | archive | help
Well, after a recommendation from our university network engineer, Chris, = who is a FreeBSD expert, I decided to look into the whole devfs thing. = Although it was new to me, a couple of quick glances at man pages and = experiments produced a /dev/pf for me. Now I have a firewall! :D Seems = very strange to me that I had to do this to make it work, however. Can = anyone tell me what the permissions/ownerships for thier /dev/pf is? I = want to make sure that mine is kosher, even though my pf is already = working. Thanks to all who helped me on this problem, not to mention those who's = mailboxes filled up with this thread! ;) Now I'm having fun dinking around with the pf.conf. One thing I really dig = so far about pf versus the firewall I use on my SuSE machines (iptables), = is that I don't have to reboot for changes to take effect. Way happy about = that! :) - Gavin >>> Gavin Spomer <spomerg@cwu.EDU> 01/25/08 3:30 PM >>> >>> Jeremy Chadwick <koitsu@FreeBSD.org> 01/25/08 2:39 PM >>> > link_elf: symbol altq_remove undefined > link_elf: symbol altq_remove undefined > link_elf: symbol altq_remove undefined > link_elf: symbol altq_remove undefined > link_elf: symbol altq_remove undefined > link_elf: symbol altq_remove undefined And, very likely, here is the cause of your pf problem. :-) Please go back to what I said about your kernel configuration -- you're missing a lot of "option" arguments for ALTQ support. Add all of the ones I gave you, follow the instructions for buildkernel/installkernel, and it should all begin working. The ALTQ options are still in my kernel; I never removed them since you = recommended I put them in and I rebuilt my kernel. I went ahead and did the buildkernel/installkernel again, = checking to see if the ALTQ stuff was in there before. This time I tried adding the "device pf" stuff back in. Still the same = story. Maybe I'm rebuilding my kernel wrong? Doesn't seem likely. How hard is it to screw up the following? 1. vi /usr/src/sys/i386/conf/MACHINEHOSTNAME (edit accordingly) 2. cd /usr/src 3. make buildkernel KERNCONF=3DMACHINEHOSTNAME 4. make installkernel KERNCONF=3DMACHINEHOSTNAME 5. shutdown -r now Well, the weekend is upon us. We can continue this on Monday, if you're = still willing. Thanks for the extra effort. - Gavin _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?479DF4480200009000013240>