From owner-freebsd-questions@FreeBSD.ORG Sat Jan 28 00:12:24 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1F20916A424 for ; Sat, 28 Jan 2006 00:12:24 +0000 (GMT) (envelope-from petermatulis@yahoo.ca) Received: from web60024.mail.yahoo.com (web60024.mail.yahoo.com [209.73.178.72]) by mx1.FreeBSD.org (Postfix) with SMTP id 444DA43D49 for ; Sat, 28 Jan 2006 00:12:23 +0000 (GMT) (envelope-from petermatulis@yahoo.ca) Received: (qmail 90436 invoked by uid 60001); 28 Jan 2006 00:12:14 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.ca; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=g07FPM4hrpF41QfEgKLSEbOgWdmV4ri9NbiBHfDsKKjd7JNCbcgZq0LjciLKDihbkMBmkdXWh0+h9Ihe7OV/Gsin7fQx90+cUqH95ZA6Tu7A3AhHy7VkK6j7JY00ik/DsjxsEfZuFaNhU2Uft0qZ8e+MBmIOxfIRp5WPkV38NH8= ; Message-ID: <20060128001214.90433.qmail@web60024.mail.yahoo.com> Received: from [216.252.84.96] by web60024.mail.yahoo.com via HTTP; Fri, 27 Jan 2006 19:12:14 EST Date: Fri, 27 Jan 2006 19:12:14 -0500 (EST) From: Peter To: cpghost , freebsd-questions@freebsd.org In-Reply-To: <20060127230539.GA60009@epia2.farid-hajji.net> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Cc: Subject: Re: ppp and pf interacting badly? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 28 Jan 2006 00:12:24 -0000 --- cpghost wrote: > Hello, > > has anyone else seen this strange interaction between > (user-)ppp and pf (on RELENG_6)? > > When configuring tun0 as external interface in pf.conf, > pf won't start when booting, because ppp has not yet had > time to initialize tun0. Result is, that pf is then > disabled (!). > > After booting, calling > /etc/rc.d/pf start > manually works well though, since tun0 is now there > and pf can initialize. > > Am I the only one seeing this happen? > > Is there any way to tell pf startup script to wait for ppp > until all needed interfaces have really come up? >From the OpenBSD 3.8 manpage (should be good for you): Host name resolution and interface to address translation are done at ruleset load-time. When the address of an interface (or host name) changes (under DHCP or PPP, for instance), the ruleset must be reloaded for the change to be reflected in the kernel. Sur- rounding the interface name (and optional modifiers) in parentheses changes this behaviour. When the interface name is surrounded by parentheses, the rule is automatically updated whenever the inter- face changes its address. The ruleset does not need to be reload- ed. This is especially useful with nat. -- Peter __________________________________________________________ Find your next car at http://autos.yahoo.ca