Date: Sun, 06 Jun 2021 09:09:46 +0000 From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 256410] pf: Add pf_default_rules option Message-ID: <bug-256410-16861-QbrZqC2SKE@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-256410-16861@https.bugs.freebsd.org/bugzilla/> References: <bug-256410-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D256410 --- Comment #7 from Thomas Steen Rasmussen / Tykling <thomas@gibfest.dk> --- (In reply to Chris Hutchinson from comment #4) Don't feel bad :) Your point about having a backup/safe/default pf.conf is certaintly valid. = That would not have helped here though, as there is no mechanism (without this patch) to load that alternative ruleset if the primary one fails. It would have to be done manually, which would require that you know when t= his happens - and if you know about a typo you would probably just fix it :) The code to automatically load an alternate ruleset from a file would look a lot like the code in my proposed patch. I opted for using an rc variable ov= er a file to avoid having an extra file in the tree which will very rarely be us= ed. Ideally the patch could be adapted to support loading from a file if one exists, and otherwise falling back to the rc variable. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-256410-16861-QbrZqC2SKE>