From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 11:06:49 2013 Return-Path: Delivered-To: freebsd-pf@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id D09A81F4 for ; Mon, 29 Jul 2013 11:06:49 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id BDC742DDD for ; Mon, 29 Jul 2013 11:06:49 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.7/8.14.7) with ESMTP id r6TB6nWj061863 for ; Mon, 29 Jul 2013 11:06:49 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.7/8.14.7/Submit) id r6TB6n5x061861 for freebsd-pf@FreeBSD.org; Mon, 29 Jul 2013 11:06:49 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 29 Jul 2013 11:06:49 GMT Message-Id: <201307291106.r6TB6n5x061861@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-pf@FreeBSD.org Subject: Current problem reports assigned to freebsd-pf@FreeBSD.org X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 11:06:49 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/179392 pf [pf] [ip6] Incorrect TCP checksums in rdr return packe o kern/177810 pf [pf] traffic dropped by accepting rules is not counted o kern/177808 pf [pf] [patch] route-to rule forwarding traffic inspite o kern/176763 pf [pf] [patch] Removing pf Source entries locks kernel. o kern/176268 pf [pf] [patch] synproxy not working with route-to o kern/173659 pf [pf] PF fatal trap on 9.1 (taskq fatal trap on pf_test o bin/172888 pf [patch] authpf(8) feature enhancement o kern/172648 pf [pf] [ip6]: 'scrub reassemble tcp' breaks IPv6 packet o kern/171733 pf [pf] PF problem with modulate state in [regression] o kern/169630 pf [pf] [patch] pf fragment reassembly of padded (undersi o kern/168952 pf [pf] direction scrub rules don't work o kern/168190 pf [pf] panic when using pf and route-to (maybe: bad frag o kern/166336 pf [pf] kern.securelevel 3 +pf reload o kern/165315 pf [pf] States never cleared in PF with DEVICE_POLLING o kern/164402 pf [pf] pf crashes with a particular set of rules when fi o kern/164271 pf [pf] not working pf nat on FreeBSD 9.0 [regression] o kern/163208 pf [pf] PF state key linking mismatch o kern/160370 pf [pf] Incorrect pfctl check of pf.conf o kern/155736 pf [pf] [altq] borrow from parent queue does not work wit o kern/153307 pf [pf] Bug with PF firewall o kern/148290 pf [pf] "sticky-address" option of Packet Filter (PF) blo o kern/148260 pf [pf] [patch] pf rdr incompatible with dummynet o kern/147789 pf [pf] Firewall PF no longer drops connections by sendin o kern/143543 pf [pf] [panic] PF route-to causes kernel panic o bin/143504 pf [patch] outgoing states are not killed by authpf(8) o conf/142961 pf [pf] No way to adjust pidfile in pflogd o conf/142817 pf [patch] etc/rc.d/pf: silence pfctl o kern/141905 pf [pf] [panic] pf kernel panic on 7.2-RELEASE with empty o kern/140697 pf [pf] pf behaviour changes - must be documented o kern/137982 pf [pf] when pf can hit state limits, random IP failures o kern/136781 pf [pf] Packets appear to drop with pf scrub and if_bridg o kern/135948 pf [pf] [gre] pf not natting gre protocol o kern/134996 pf [pf] Anchor tables not included when pfctl(8) is run w o kern/133732 pf [pf] max-src-conn issue o conf/130381 pf [rc.d] [pf] [ip6] ipv6 not fully configured when pf st o kern/127920 pf [pf] ipv6 and synproxy don't play well together o conf/127814 pf [pf] The flush in pf_reload in /etc/rc.d/pf does not w o kern/127121 pf [pf] [patch] pf incorrect log priority o kern/127042 pf [pf] [patch] pf recursion panic if interface group is o kern/125467 pf [pf] pf keep state bug while handling sessions between s kern/124933 pf [pf] [ip6] pf does not support (drops) IPv6 fragmented o kern/122773 pf [pf] pf doesn't log uid or pid when configured to o kern/122014 pf [pf] [panic] FreeBSD 6.2 panic in pf o kern/120281 pf [pf] [request] lost returning packets to PF for a rdr o kern/120057 pf [pf] [patch] Allow proper settings of ALTQ_HFSC. The c o bin/118355 pf [pf] [patch] pfctl(8) help message options order false o kern/114567 pf [pf] [lor] pf_ioctl.c + if.c o kern/103283 pf pfsync fails to sucessfully transfer some sessions o kern/93825 pf [pf] pf reply-to doesn't work o sparc/93530 pf [pf] Incorrect checksums when using pf's route-to on s o kern/92949 pf [pf] PF + ALTQ problems with latency o kern/87074 pf [pf] pf does not log dropped packets when max-* statef a kern/86752 pf [pf] pf does not use default timeouts when reloading c o bin/86635 pf [patch] pfctl(8): allow new page character (^L) in pf. o kern/82271 pf [pf] cbq scheduler cause bad latency 55 problems total. From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 13:37:03 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id E9585D8E; Mon, 29 Jul 2013 13:37:03 +0000 (UTC) (envelope-from glebius@FreeBSD.org) Received: from cell.glebius.int.ru (glebius.int.ru [81.19.69.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 6FA3F26A2; Mon, 29 Jul 2013 13:37:02 +0000 (UTC) Received: from cell.glebius.int.ru (localhost [127.0.0.1]) by cell.glebius.int.ru (8.14.7/8.14.7) with ESMTP id r6TDawv5015130; Mon, 29 Jul 2013 17:36:58 +0400 (MSK) (envelope-from glebius@FreeBSD.org) Received: (from glebius@localhost) by cell.glebius.int.ru (8.14.7/8.14.7/Submit) id r6TDawx0015129; Mon, 29 Jul 2013 17:36:58 +0400 (MSK) (envelope-from glebius@FreeBSD.org) X-Authentication-Warning: cell.glebius.int.ru: glebius set sender to glebius@FreeBSD.org using -f Date: Mon, 29 Jul 2013 17:36:58 +0400 From: Gleb Smirnoff To: Craig Rodrigues Subject: Re: De-virtualize V_pf_mtag_z to eliminate kernel panics. Message-ID: <20130729133658.GB72360@glebius.int.ru> References: MIME-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.21 (2010-09-15) Cc: Adrian Chadd , Marko Zec , "freebsd-virtualization@freebsd.org" , freebsd-pf@freebsd.org X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 13:37:04 -0000 Craig, right now Nikos Vassiliadis is working on vimaging the pf properly. I'd leave decision on whether pf mtag zone should be V or not to him. He is now a bit busy with real life, so patching pf is on hiatus. I hope he will continue soon. P.S. The patch in the first mail isn't correct, as Marko explained. -- Totus tuus, Glebius. From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 16:35:20 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 26C67FF4 for ; Mon, 29 Jul 2013 16:35:20 +0000 (UTC) (envelope-from yeris@netcrc.net) Received: from mail.netcrc.net (mail.netcrc.net [190.124.246.246]) by mx1.freebsd.org (Postfix) with ESMTP id B7ED120DE for ; Mon, 29 Jul 2013 16:35:19 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netcrc.net (Postfix) with ESMTP id 64BF35343C6; Mon, 29 Jul 2013 10:35:13 -0600 (CST) X-Virus-Scanned: Debian amavisd-new at mail.netcrc.net Received: from mail.netcrc.net ([127.0.0.1]) by localhost (mail.netcrc.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bzPrqtL88IiL; Mon, 29 Jul 2013 10:35:12 -0600 (CST) Received: from [192.168.50.110] (unknown [190.124.246.29]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: yeris@netcrc.net) by mail.netcrc.net (Postfix) with ESMTPSA id 6D1EA5343C5; Mon, 29 Jul 2013 10:35:12 -0600 (CST) Message-ID: <51F69A00.5080202@netcrc.net> Date: Mon, 29 Jul 2013 10:36:16 -0600 From: Yeris Antonio Madrigal Castro User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130623 Thunderbird/17.0.7 MIME-Version: 1.0 To: Jason Hellenthal Subject: Re: pf log script issue References: <51F30C00.2000007@netcrc.cr> <51F3F06F.4000101@netcrc.net> <166BA3A5-3876-4383-B78B-7BCB32BCDE80@dataix.net> In-Reply-To: <166BA3A5-3876-4383-B78B-7BCB32BCDE80@dataix.net> X-Enigmail-Version: 1.5.2 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: "freebsd-pf@freebsd.org" X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 16:35:20 -0000 No, I am actually using the crontab as root, just the line with tcpdump is not working, but if I runt the script manually all works. Regards El 27/07/2013 10:17, Jason Hellenthal escribió: > Are you using /etc/crontab ? > > -- > Jason Hellenthal > Inbox: jhellenthal@DataIX.net > Voice: +1 (616) 953-0176 > JJH48-ARIN > > > On Jul 27, 2013, at 12:08, Yeris Antonio Madrigal Castro > > wrote: > >> >> Hi >> >> I am using freebsd 9.1 R, and i am trying to make the pf firewall to log >> to the syslog. >> >> I am using the script at the openbsd fag: >> >> http://www.openbsd.org/faq/pf/logging.html >> >> The script works 100% if I run it manually, but when crontab runs it as >> root, the tcpdump wont work. >> >> I would appreciate any help. >> >> Regards >> >> ** >> ** >> >> >> >> _______________________________________________ >> freebsd-pf@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org >> " From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 16:43:36 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 0E26D23D for ; Mon, 29 Jul 2013 16:43:36 +0000 (UTC) (envelope-from gpalmer@freebsd.org) Received: from mail.in-addr.com (unknown [IPv6:2001:470:8:162::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id CE2D72156 for ; Mon, 29 Jul 2013 16:43:35 +0000 (UTC) Received: from gjp by mail.in-addr.com with local (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1V3qXi-0007CP-7j; Mon, 29 Jul 2013 12:43:30 -0400 Date: Mon, 29 Jul 2013 12:43:30 -0400 From: Gary Palmer To: Yeris Antonio Madrigal Castro Subject: Re: pf log script issue Message-ID: <20130729164329.GB70888@in-addr.com> References: <51F30C00.2000007@netcrc.cr> <51F3F06F.4000101@netcrc.net> <166BA3A5-3876-4383-B78B-7BCB32BCDE80@dataix.net> <51F69A00.5080202@netcrc.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <51F69A00.5080202@netcrc.net> X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: gpalmer@freebsd.org X-SA-Exim-Scanned: No (on mail.in-addr.com); SAEximRunCond expanded to false Cc: "freebsd-pf@freebsd.org" X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 16:43:36 -0000 On Mon, Jul 29, 2013 at 10:36:16AM -0600, Yeris Antonio Madrigal Castro wrote: > No, I am actually using the crontab as root, just the line with tcpdump > is not working, but if I runt the script manually all works. > > Regards If you specify the full path to the tcpdump binary, i.e. /usr/sbin/tcpdump, does that fix the problem? Gary > El 27/07/2013 10:17, Jason Hellenthal escribi??: > > Are you using /etc/crontab ? > > > > -- > > Jason Hellenthal > > Inbox: jhellenthal@DataIX.net > > Voice: +1 (616) 953-0176 > > JJH48-ARIN > > > > > > On Jul 27, 2013, at 12:08, Yeris Antonio Madrigal Castro > > > wrote: > > > >> > >> Hi > >> > >> I am using freebsd 9.1 R, and i am trying to make the pf firewall to log > >> to the syslog. > >> > >> I am using the script at the openbsd fag: > >> > >> http://www.openbsd.org/faq/pf/logging.html > >> > >> The script works 100% if I run it manually, but when crontab runs it as > >> root, the tcpdump wont work. > >> > >> I would appreciate any help. > >> > >> Regards > >> > >> ** > >> ** > >> > >> > >> > >> _______________________________________________ > >> freebsd-pf@freebsd.org mailing list > >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf > >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org > >> " > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 17:09:15 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 7DB9FF46; Mon, 29 Jul 2013 17:09:15 +0000 (UTC) (envelope-from yeris@netcrc.net) Received: from mail.netcrc.net (mail.netcrc.net [190.124.246.246]) by mx1.freebsd.org (Postfix) with ESMTP id 42BE92354; Mon, 29 Jul 2013 17:09:15 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netcrc.net (Postfix) with ESMTP id 7E9875343C6; Mon, 29 Jul 2013 11:09:14 -0600 (CST) X-Virus-Scanned: Debian amavisd-new at mail.netcrc.net Received: from mail.netcrc.net ([127.0.0.1]) by localhost (mail.netcrc.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3EnabwuD6g15; Mon, 29 Jul 2013 11:09:13 -0600 (CST) Received: from [192.168.50.110] (unknown [190.124.246.29]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: yeris@netcrc.net) by mail.netcrc.net (Postfix) with ESMTPSA id DA6275343C5; Mon, 29 Jul 2013 11:09:13 -0600 (CST) Message-ID: <51F6A1FA.8040109@netcrc.net> Date: Mon, 29 Jul 2013 11:10:18 -0600 From: Yeris Antonio Madrigal Castro User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130623 Thunderbird/17.0.7 MIME-Version: 1.0 To: Gary Palmer Subject: Re: pf log script issue References: <51F30C00.2000007@netcrc.cr> <51F3F06F.4000101@netcrc.net> <166BA3A5-3876-4383-B78B-7BCB32BCDE80@dataix.net> <51F69A00.5080202@netcrc.net> <20130729164329.GB70888@in-addr.com> In-Reply-To: <20130729164329.GB70888@in-addr.com> X-Enigmail-Version: 1.5.2 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Cc: "freebsd-pf@freebsd.org" X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 17:09:15 -0000 Dude! that actually solved the problem... may I know why. Kind regards El 29/07/2013 10:43, Gary Palmer escribió: > On Mon, Jul 29, 2013 at 10:36:16AM -0600, Yeris Antonio Madrigal Castro wrote: >> No, I am actually using the crontab as root, just the line with tcpdump >> is not working, but if I runt the script manually all works. >> >> Regards > If you specify the full path to the tcpdump binary, i.e. /usr/sbin/tcpdump, > does that fix the problem? > > Gary > >> El 27/07/2013 10:17, Jason Hellenthal escribi??: >>> Are you using /etc/crontab ? >>> >>> -- >>> Jason Hellenthal >>> Inbox: jhellenthal@DataIX.net >>> Voice: +1 (616) 953-0176 >>> JJH48-ARIN >>> >>> >>> On Jul 27, 2013, at 12:08, Yeris Antonio Madrigal Castro >>> > wrote: >>> >>>> Hi >>>> >>>> I am using freebsd 9.1 R, and i am trying to make the pf firewall to log >>>> to the syslog. >>>> >>>> I am using the script at the openbsd fag: >>>> >>>> http://www.openbsd.org/faq/pf/logging.html >>>> >>>> The script works 100% if I run it manually, but when crontab runs it as >>>> root, the tcpdump wont work. >>>> >>>> I would appreciate any help. >>>> >>>> Regards >>>> >>>> ** >>>> ** >>>> >>>> >>>> >>>> _______________________________________________ >>>> freebsd-pf@freebsd.org mailing list >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-pf >>>> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org >>>> " >> _______________________________________________ >> freebsd-pf@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" From owner-freebsd-pf@FreeBSD.ORG Mon Jul 29 18:16:42 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 33ED0420; Mon, 29 Jul 2013 18:16:42 +0000 (UTC) (envelope-from gpalmer@freebsd.org) Received: from mail.in-addr.com (unknown [IPv6:2001:470:8:162::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id E17C12695; Mon, 29 Jul 2013 18:16:41 +0000 (UTC) Received: from gjp by mail.in-addr.com with local (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1V3rzp-0007Fr-Fc; Mon, 29 Jul 2013 14:16:37 -0400 Date: Mon, 29 Jul 2013 14:16:37 -0400 From: Gary Palmer To: Yeris Antonio Madrigal Castro Subject: Re: pf log script issue Message-ID: <20130729181637.GC70888@in-addr.com> References: <51F30C00.2000007@netcrc.cr> <51F3F06F.4000101@netcrc.net> <166BA3A5-3876-4383-B78B-7BCB32BCDE80@dataix.net> <51F69A00.5080202@netcrc.net> <20130729164329.GB70888@in-addr.com> <51F6A1FA.8040109@netcrc.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <51F6A1FA.8040109@netcrc.net> X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: gpalmer@freebsd.org X-SA-Exim-Scanned: No (on mail.in-addr.com); SAEximRunCond expanded to false Cc: "freebsd-pf@freebsd.org" X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Jul 2013 18:16:42 -0000 On Mon, Jul 29, 2013 at 11:10:18AM -0600, Yeris Antonio Madrigal Castro wrote: > Dude! that actually solved the problem... may I know why. > > Kind regards /usr/sbin tends not to be on the default path. If you do something like echo $PATH > /tmp/root-cron-path in your script you'll see the path that is being used. Gary > > El 29/07/2013 10:43, Gary Palmer escribi?: > > On Mon, Jul 29, 2013 at 10:36:16AM -0600, Yeris Antonio Madrigal Castro wrote: > >> No, I am actually using the crontab as root, just the line with tcpdump > >> is not working, but if I runt the script manually all works. > >> > >> Regards > > If you specify the full path to the tcpdump binary, i.e. /usr/sbin/tcpdump, > > does that fix the problem? > > > > Gary > > > >> El 27/07/2013 10:17, Jason Hellenthal escribi??: > >>> Are you using /etc/crontab ? > >>> > >>> -- > >>> Jason Hellenthal > >>> Inbox: jhellenthal@DataIX.net > >>> Voice: +1 (616) 953-0176 > >>> JJH48-ARIN > >>> > >>> > >>> On Jul 27, 2013, at 12:08, Yeris Antonio Madrigal Castro > >>> > wrote: > >>> > >>>> Hi > >>>> > >>>> I am using freebsd 9.1 R, and i am trying to make the pf firewall to log > >>>> to the syslog. > >>>> > >>>> I am using the script at the openbsd fag: > >>>> > >>>> http://www.openbsd.org/faq/pf/logging.html > >>>> > >>>> The script works 100% if I run it manually, but when crontab runs it as > >>>> root, the tcpdump wont work. > >>>> > >>>> I would appreciate any help. > >>>> > >>>> Regards > >>>> > >>>> ** > >>>> ** > >>>> > >>>> > >>>> > >>>> _______________________________________________ > >>>> freebsd-pf@freebsd.org mailing list > >>>> http://lists.freebsd.org/mailman/listinfo/freebsd-pf > >>>> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org > >>>> " > >> _______________________________________________ > >> freebsd-pf@freebsd.org mailing list > >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf > >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > >