From owner-freebsd-pf@FreeBSD.ORG  Fri Jan 28 16:37:08 2011
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 05714106564A
	for <freebsd-pf@freebsd.org>; Fri, 28 Jan 2011 16:37:08 +0000 (UTC)
	(envelope-from ml@my.gd)
Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50])
	by mx1.freebsd.org (Postfix) with ESMTP id 9A5DC8FC19
	for <freebsd-pf@freebsd.org>; Fri, 28 Jan 2011 16:37:06 +0000 (UTC)
Received: by wwf26 with SMTP id 26so3360532wwf.31
	for <freebsd-pf@freebsd.org>; Fri, 28 Jan 2011 08:37:05 -0800 (PST)
Received: by 10.227.141.147 with SMTP id m19mr2918300wbu.208.1296232625461;
	Fri, 28 Jan 2011 08:37:05 -0800 (PST)
Received: from dfleuriot.local ([83.167.62.196])
	by mx.google.com with ESMTPS id o6sm1166438wbo.21.2011.01.28.08.37.03
	(version=SSLv3 cipher=RC4-MD5); Fri, 28 Jan 2011 08:37:03 -0800 (PST)
Message-ID: <4D42F0AE.7010009@my.gd>
Date: Fri, 28 Jan 2011 17:37:02 +0100
From: Damien Fleuriot <ml@my.gd>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US;
	rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7
MIME-Version: 1.0
To: freebsd-pf@freebsd.org
References: <4D428A38.8000609@gmail.com>	<9E8D76EC267C9444AC737F649CBBAD9027BC4023C4@PEMEXMBXVS02.jellyfishnet.co.uk.local>
	<4D42DFEA.3020003@gmail.com>
In-Reply-To: <4D42DFEA.3020003@gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Subject: Re: why "block quick on wlan0" doesn't stop DHCP?
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jan 2011 16:37:08 -0000

On 1/28/11 4:25 PM, Michael wrote:
> On 28/01/2011 09:47, Greg Hennessy wrote:
>>
>> IIRC BPF sees all traffic before PF. DHCP hooks at the BPF layer, so
>> it'll be serviced before any filtering policy applies.
>>
> 
> Now that's not cool man.. ;) So is it like there's nothing I can do
> about it?
> Thanks a lot for your explanation, I was not aware of that.
> 
> Michael


Dirty workaround, in rc.conf

ifconfig_wlan0="down"

Or just give it a static IP.