From owner-freebsd-pf@FreeBSD.ORG Wed Oct 11 15:10:01 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 29A8016A4E1 for ; Wed, 11 Oct 2006 15:10:01 +0000 (UTC) (envelope-from gergely.czuczy@harmless.hu) Received: from marvin.harmless.hu (mostly.harmless.hu [195.56.55.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id 43C6643DAF for ; Wed, 11 Oct 2006 15:09:45 +0000 (GMT) (envelope-from gergely.czuczy@harmless.hu) Received: from localhost (marvin-mail [192.168.0.2]) by marvin (Postfix) with ESMTP id 435727BFF72; Wed, 11 Oct 2006 17:09:44 +0200 (CEST) X-Virus-Scanned: amavisd-new at harmless.hu Received: from marvin.harmless.hu ([192.168.0.2]) by localhost (marvin.harmless.hu [192.168.0.2]) (amavisd-new, port 10024) with ESMTP id IBWfwkIu7+xG; Wed, 11 Oct 2006 17:09:38 +0200 (CEST) Received: from marvin.harmless.hu (localhost [127.0.0.1]) by marvin (Postfix) with ESMTP id B30787BFF71; Wed, 11 Oct 2006 17:09:36 +0200 (CEST) Date: Wed, 11 Oct 2006 17:09:36 +0200 From: Gergely CZUCZY To: Jon Otterholm Message-ID: <20061011150936.GA47845@harmless.hu> References: <452D081A.9090603@ide.resurscentrum.se> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=x-unknown; protocol="application/pgp-signature"; boundary="ZGiS0Q5IWpPtfppv" Content-Disposition: inline In-Reply-To: <452D081A.9090603@ide.resurscentrum.se> User-Agent: mutt-ng/devel-r804 (FreeBSD) Cc: freebsd-pf@freebsd.org Subject: Re: table persist file X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Oct 2006 15:10:01 -0000 --ZGiS0Q5IWpPtfppv Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Oct 11, 2006 at 05:04:58PM +0200, Jon Otterholm wrote: > Hi. >=20 > I have a table in my pf.conf: >=20 > table persist file "/etc/pf/commit" let me quote the manual, pf.conf(5) for you: --- chop with axe here --- A table can also be initialized with an address list specified in one = or more external files, using the following syntax: --- chop with axe here --- And now, some terminology. the process named "initalization" means, to set the initalial values of some object. the initial value is the value that the object has at startup-time. > When I add IP's to the table nothing gets into the file even though they = are listed in the table. check the part of the manual, and reinterpret what i have read. >=20 > Any thoughts? Hint: it's nowhere said that the pf will synchronize the contents of the file with the table. use a crontab script for this, like 05 * * * * root pfctl -t ftp-blacklist -Tsh= ow > /etc/pf/ftp-blacklist have fun, Gergely Czuczy mailto: gergely.czuczy@harmless.hu --=20 Weenies test. Geniuses solve problems that arise. --ZGiS0Q5IWpPtfppv Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) owF9VL+LJEUUHu80sEDkMgOFxyb+2OmZnmNnd250Z13vlrsVZC9YWEEQampeT5db XdVWvZ7ZWcxOxMBADTXQWBAUDMyMBEEU/QcEEf8HEQNfVc+cZ3KddPd7r1597/u+ qg+fuNq5cu3nr755Y/uDjz995MtH/5luVw2RnWeV9Atts0GeD7KdvdHOMNvNdm/s jG7sDdVAzUbFNN87yh7PbzpLaCk7XdU4BsIL6tdGavsiqFL6gLTfUJGNxKbulg61 C5q0s2PQ1miL93OnXtpQoM+OrHIzbedjeLtxhLOs9tqSnBoU4sTCGc66cKIIBoMu XM/zXZAE+XCc74yHo7uvwXbOwS686iycEKEvnalg6bnTWEzgju6Jyf71nD+PoZQL BAmpN8OBagV10VPOFuNNUZt7Sbmq0jSBGn3QgaDQHN3qI6l+XfTb7JYwSFBhCxuo RKikbaTpbro+N3weCudh5ZqxyLKMWXI1LDWVIC8QSvQIHBYQn8P13kpakCY4mEaM zJ00+hJn62Wcm808hgAm4go1Kl1oTvM4ziLsC+fbfpXj7qwQeitNGiB0oQlMdIJa OGPcMv6FFbN98VCAh3YG1i27EBzPyy0rbZ1x81VPxF61dypCsrJiJFsRdQQto+5b zBAL3QVywAaJe4t1AcNaSNNgAFe0nd30LVTUSwDXs7clQocUTD/8JVOjdT3rGqIp AklPTZ2RrrAnWMyzEi3LzozB8d1nQ4QQV7U8W0dlHH+OFHizdS4JjQteR6Vr5mUM rphVyUxExlum73fpCVWiOk+BmnePkzxoBMnEeeTu6GvP0y8jct0a0aOcRZit8Q7t ar0lhQNxh5fwiSEGzbwnHYLUs/8mrwuWyZgoniq9s2yRRK1qT1fYAEnzJEEfwCya EM+B4nUcgaC8rik5lSlhqYw+R5EPk43gBXj42ztH8V0Xigxk3IfqbGqkOk8OzU5D yaZcwgQ2x+d/BUIkMorGdoW4jX6OZgU3Lxt1uRKV1IbcmCVK4Z5K4Zf5qqnYzaFX NoJdG/k7Q7SajUQY2D63+YdHDGwqs0j25LGr0LInvQ7MwfsHVx/rxDttcyFeu3J+ r/P5138d/HL6zreTd83rP/T1Rz/+/et7n3Q+e+WZ3/H77+799OQfR38+deuLzvFv T7/5Lw== =9b1M -----END PGP SIGNATURE----- --ZGiS0Q5IWpPtfppv--