From owner-freebsd-questions@FreeBSD.ORG Fri Aug 4 13:01:14 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3372216A4DD for ; Fri, 4 Aug 2006 13:01:14 +0000 (UTC) (envelope-from xfb52@dial.pipex.com) Received: from smtp-out2.blueyonder.co.uk (smtp-out2.blueyonder.co.uk [195.188.213.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 906C743D49 for ; Fri, 4 Aug 2006 13:01:12 +0000 (GMT) (envelope-from xfb52@dial.pipex.com) Received: from [172.23.170.143] (helo=anti-virus02-10) by smtp-out2.blueyonder.co.uk with smtp (Exim 4.52) id 1G8zId-00083Q-Lz; Fri, 04 Aug 2006 14:01:11 +0100 Received: from [82.41.35.166] (helo=[192.168.0.2]) by asmtp-out1.blueyonder.co.uk with esmtp (Exim 4.52) id 1G8zIc-0002ho-Uo; Fri, 04 Aug 2006 14:01:11 +0100 Message-ID: <44D34516.6010706@dial.pipex.com> Date: Fri, 04 Aug 2006 14:01:10 +0100 From: Alex Zbyslaw User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-GB; rv:1.7.13) Gecko/20060515 X-Accept-Language: en MIME-Version: 1.0 To: Beni References: <200608041426.49448.beni@brinckman.info> In-Reply-To: <200608041426.49448.beni@brinckman.info> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: pflog0 question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Aug 2006 13:01:14 -0000 Beni wrote: >Hi all, > >Does pflog0 need to get an ip-address from dhcp ? From what I can see in >dmesg, pflog0 can't get one (vr0 does) but pflog0 seems to be up and running >(same for pf and pflogd). > >So how do I get an address for pflog0 (if needed) ? I'm using 6.1-STABLE. > >From dmesg : > >[...] >DHCPREQUEST on vr0 to 255.255.255.255 port 67 >DHCPNAK from 192.168.1.1 >DHCPDISCOVER on vr0 to 255.255.255.255 port 67 interval 5 >DHCPOFFER from 192.168.1.1 >DHCPREQUEST on vr0 to 255.255.255.255 port 67 >DHCPACK from 192.168.1.1 >bound to 192.168.1.100 -- renewal in 86400 seconds. >DHCPDISCOVER on pflog0 to 255.255.255.255 port 67 interval 5 >send_packet: Input/output error >DHCPDISCOVER on pflog0 to 255.255.255.255 port 67 interval 14 >send_packet: Input/output error >DHCPDISCOVER on pflog0 to 255.255.255.255 port 67 interval 18 >send_packet: Input/output error >DHCPDISCOVER on pflog0 to 255.255.255.255 port 67 interval 18 >send_packet: Input/output error >DHCPDISCOVER on pflog0 to 255.255.255.255 port 67 interval 6 >send_packet: Input/output error >No DHCPOFFERS received. >No working leases in persistent database - sleeping. > >lo0: flags=8049 mtu 16384 > inet6 ::1 prefixlen 128 > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 > inet 127.0.0.1 netmask 0xff000000 >vr0: flags=8843 mtu 1500 > inet6 fe80::20c:76ff:fec2:2cb7%vr0 prefixlen 64 scopeid 0x1 > inet 192.168.1.100 netmask 0xffffff00 broadcast 192.168.1.255 > ether 00:0c:76:c2:2c:b7 > media: Ethernet autoselect (100baseTX ) > status: active >pflog0: flags=41 mtu 33208 > inet 0.0.0.0 netmask 0xff000000 >Enabling pflogd >. >Aug 4 12:00:04 pflogd[310]: [priv]: msg PRIV_OPEN_LOG received >Enabling pf. >pf enabled >[...] > > >In my /etc/pf.conf I have : >pass in quick on $ext_if inet proto udp from any to any port { 67, 68 } > >The /var/db/dhclient.leases.pflog0 is an empty file, 0 bytes whereas >dhclient.leases.vr0 is 730 kb. > > Disclaimer, I do not use pflog. But the manual page just says to do: # ifconfig pflog0 up # tcpdump -n -e -ttt -i pflog0 No mention of IP addresses at all, let alone DHCP. >I also have >ifconfig_pflog0="DHCP" >in my /etc/rc.conf. > > > It's trying to get a DHCP address because you have told it to, right here. Try commenting this line out and rebooting (yes, there probably is a way to do it with rc scripts; feel free to investigate :-). Or just try "ifconfig pflog0 down; ifconfig pflog0 up" but it may try and remember your DHCP setting). --Alex