From owner-freebsd-pf@FreeBSD.ORG Fri Jan 25 15:44:09 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9A85616A494 for ; Fri, 25 Jan 2008 15:44:09 +0000 (UTC) (envelope-from spomerg@cwu.EDU) Received: from scylla.cts.cwu.edu (scylla.cts.cwu.edu [198.104.67.151]) by mx1.freebsd.org (Postfix) with ESMTP id 8D34F13C4CE for ; Fri, 25 Jan 2008 15:44:09 +0000 (UTC) (envelope-from spomerg@cwu.EDU) Received: from CONVERSION-CWU-DAEMON.SCYLLA.CTS.CWU.EDU by SCYLLA.CTS.CWU.EDU (PMDF V6.3-x13 #31358) id <01MQI3LZXQCG001U6S@SCYLLA.CTS.CWU.EDU> for freebsd-pf@freebsd.org; Fri, 25 Jan 2008 07:44:08 -0800 (PST) Received: from hermes.cwu.edu (hermes.cwu.edu [172.16.21.28]) by SCYLLA.CTS.CWU.EDU (PMDF V6.3-x13 #31358) with ESMTP id <01MQI3LZR0AK001UAU@SCYLLA.CTS.CWU.EDU> for freebsd-pf@freebsd.org; Fri, 25 Jan 2008 07:44:08 -0800 (PST) Received: from cwugate1-MTA by hermes.cwu.edu with Novell_GroupWise; Fri, 25 Jan 2008 07:44:08 -0800 Date: Fri, 25 Jan 2008 07:43:54 -0800 From: Gavin Spomer To: freebsd-pf@freebsd.org Message-id: <4799933A0200009000012FFC@hermes.cwu.edu> MIME-version: 1.0 X-Mailer: Novell GroupWise Internet Agent 7.0.2 HP Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: quoted-printable Content-disposition: inline Subject: Re: How does /dev/pf get created? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Jan 2008 15:44:09 -0000 First of all, thanks! :) >>> Tommy Pham 01/24/08 5:17 PM >>> Check your /etc/make.conf. I remember that you can disable it if NO_PF=3DYES is not commented out.=20 I only have 3 lines in my /etc/make.conf: a comment and 2 lines about = what perl to use. Is NO_PF=3DYES the default if not specified? In that case adding NO_PF=3DNO and then building may work. Also, I remember reading it somewhere that pf requires 'device bpf' in the kernel (which you might want to check for that too).=20 I read that somewhere too and it is indeed left uncommented. I presume you used a copy of GENERIC kernel file and comment out what you don't need...?=20 That is correct. I did: cp GENERIC MACHINEHOSTNAME and edited MACHINEHOS= TNAME w/ vim. If so, did you specify the kernel file name in the /etc/make.conf or in the command line KERNCONF=3D? I did it via the command line: make buildkernel KERNCONF=3DMACHINEHOSTNAME make installkernel KERNCONT=3DMACHINEHOSTNAME Shouldn't having "device pf" in MACHINEHOSTNAME file and building = provide /dev/pf? I have such a vanilla installation of FreeBSD, it's hard for me to see = where I went wrong. I seem to have all the components of pf except /dev/pf. I have /sbin/pfctl, /etc/pf.conf, = /boot/kernel/pf.ko, /boot/kernel/pflog.ko and the appropriate stuff I mentioned in /etc/rc.conf and probably others as = well. I just don't have /dev/pf. How does this get created? Regards, Tommy --- Gavin Spomer wrote: > I have followed the instructions in the FreeBSD Handbook for > implementing pf, but when I run pfctl -e, I get: >=20 > pfctl: /dev/pf: No such file or directory".