From owner-freebsd-pf@FreeBSD.ORG  Tue Sep 11 12:21:16 2012
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: pf@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 3BFBB1065676
	for <pf@FreeBSD.org>; Tue, 11 Sep 2012 12:21:16 +0000 (UTC)
	(envelope-from glebius@FreeBSD.org)
Received: from cell.glebius.int.ru (glebius.int.ru [81.19.64.117])
	by mx1.freebsd.org (Postfix) with ESMTP id A7F3F8FC08
	for <pf@FreeBSD.org>; Tue, 11 Sep 2012 12:21:15 +0000 (UTC)
Received: from cell.glebius.int.ru (localhost [127.0.0.1])
	by cell.glebius.int.ru (8.14.5/8.14.5) with ESMTP id q8BCLE85077144;
	Tue, 11 Sep 2012 16:21:14 +0400 (MSK)
	(envelope-from glebius@FreeBSD.org)
Received: (from glebius@localhost)
	by cell.glebius.int.ru (8.14.5/8.14.5/Submit) id q8BCLEVg077143;
	Tue, 11 Sep 2012 16:21:14 +0400 (MSK)
	(envelope-from glebius@FreeBSD.org)
X-Authentication-Warning: cell.glebius.int.ru: glebius set sender to
	glebius@FreeBSD.org using -f
Date: Tue, 11 Sep 2012 16:21:14 +0400
From: Gleb Smirnoff <glebius@FreeBSD.org>
To: Oguz Yilmaz <oguzyilmazlist@gmail.com>
Message-ID: <20120911122114.GK44854@glebius.int.ru>
References: <20120608061737.GA28197@glebius.int.ru>
	<CAAo+KFmhAmPw6h=Guq8_G30ak2XNyKib6O1WP9YAEsjB2UshGw@mail.gmail.com>
	<20120911100639.GE44854@FreeBSD.org>
	<CAAo+KFk0S9=dv2mWcKwiWGHFM3qEnGXBTU+Czbbq02LXycUF2g@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
In-Reply-To: <CAAo+KFk0S9=dv2mWcKwiWGHFM3qEnGXBTU+Czbbq02LXycUF2g@mail.gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Cc: pf@FreeBSD.org
Subject: Re: [CFT] SMP-friendly pf
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Sep 2012 12:21:16 -0000

On Tue, Sep 11, 2012 at 02:22:39PM +0300, Oguz Yilmaz wrote:
O> Ok. We go thru head.
O> We compiled the kernel and boot into 10.0
O>  FreeBSD 10.0-CURRENT #0 r240350
O> 
O> # pfctl -sr
O> No ALTQ support in kernel
O> ALTQ related functions disabled
O> pfctl: DIOCGETRULES: Permission denied
O> ]# pfctl -si
O> No ALTQ support in kernel
O> ALTQ related functions disabled
O> pfctl: DIOCGETSTATUS: Permission denied
O> 
O> This Permission Denied issues should be old pfctl.
O> 
O> Now, how can we compile pfctl and snmp_pf without make world?

You really should go with make world, because no one guarantees
that head/ branch would work with mismatching world and kernel.

However answer for your question is:

1) Install pfvar.h:

cat /usr/src/sys/contrib/pf/net/pfvar.h > /usr/include/pfvar.h

2) Rebuild and reinstall pfctl and snmp_pf

cd /usr/src/sbin/pfctl
make clean
make
make install

cd /usr/src/usr.sbin/bsnmpd/modules/snmp_pf
make clean
make 
make install

But I'd recommend doing full buildworld and keep your kernel and userland in sync.

-- 
Totus tuus, Glebius.