From owner-freebsd-net@freebsd.org Tue Aug 18 08:16:51 2015 Return-Path: Delivered-To: freebsd-net@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 489549B89A2 for ; Tue, 18 Aug 2015 08:16:51 +0000 (UTC) (envelope-from avg@FreeBSD.org) Received: from citadel.icyb.net.ua (citadel.icyb.net.ua [212.40.38.140]) by mx1.freebsd.org (Postfix) with ESMTP id 6E84D1EF9 for ; Tue, 18 Aug 2015 08:16:49 +0000 (UTC) (envelope-from avg@FreeBSD.org) Received: from porto.starpoint.kiev.ua (porto-e.starpoint.kiev.ua [212.40.38.100]) by citadel.icyb.net.ua (8.8.8p3/ICyb-2.3exp) with ESMTP id LAA22004 for ; Tue, 18 Aug 2015 11:16:42 +0300 (EEST) (envelope-from avg@FreeBSD.org) Received: from localhost ([127.0.0.1]) by porto.starpoint.kiev.ua with esmtp (Exim 4.34 (FreeBSD)) id 1ZRc4X-00092N-KN for freebsd-net@freebsd.org; Tue, 18 Aug 2015 11:16:41 +0300 To: freebsd-net@FreeBSD.org From: Andriy Gapon Subject: pf and new interface Message-ID: <55D2E9B3.2040301@FreeBSD.org> Date: Tue, 18 Aug 2015 11:15:47 +0300 User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.1.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Mailman-Approved-At: Tue, 18 Aug 2015 11:05:07 +0000 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Aug 2015 08:16:51 -0000 I have the following rule in pf.conf: set skip on tap and even the following one: set skip on tap0 The rules are loaded at the system start-up time, but the tap interface may not be created until much later. When tap0 is first created the skip rules are not applied to it and the traffic gets filtered. If I reload the pf configuration, then the rules start working. Is there a way to make pf honor such rules for the dynamic interfaces? -- Andriy Gapon