Date: Thu, 08 Oct 2020 11:46:04 +0000 From: bugzilla-noreply@freebsd.org To: rc@FreeBSD.org Subject: [Bug 211928] [pf] /etc/rc.d/pf should REQUIRE routing Message-ID: <bug-211928-20181-GuuB1zJpkI@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-211928-20181@https.bugs.freebsd.org/bugzilla/> References: <bug-211928-20181@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D211928 --- Comment #2 from commit-hook@FreeBSD.org --- A commit references this bug: Author: kaktus Date: Thu Oct 8 11:45:11 UTC 2020 New revision: 366537 URL: https://svnweb.freebsd.org/changeset/base/366537 Log: [pf] /etc/rc.d/pf should REQUIRE routing When a system with pf_enable=3D"YES" in /etc/rc.conf uses hostnames in /etc/pf.conf, these hostnames cannot be resolved via external nameservers because the default route is not yet set. This results in an empty (all open) ruleset. Since r195026 already put netif back to REQUIRE, this change does not aff= ect the issue that the firewall should rather have been setup before any network traffic can occur. PR: 211928 Submitted by: Robert Schulze Reported by: Robert Schulze Tested by: Mateusz Kwiatkowski No objections from: kp MFC after: 3 days Changes: head/libexec/rc/rc.d/pf --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-211928-20181-GuuB1zJpkI>