From owner-freebsd-stable@FreeBSD.ORG Mon May 8 08:07:07 2006 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 75B5216A402 for ; Mon, 8 May 2006 08:07:07 +0000 (UTC) (envelope-from ianchov@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.174]) by mx1.FreeBSD.org (Postfix) with ESMTP id C0EE743D45 for ; Mon, 8 May 2006 08:07:06 +0000 (GMT) (envelope-from ianchov@gmail.com) Received: by ug-out-1314.google.com with SMTP id e2so1070148ugf for ; Mon, 08 May 2006 01:07:05 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=LNWk5bvhwyAnoE4iESwmjoZ6e/1zAz+Y230Ckm4+6/9OsmyPFEH8OmUPDxsf+pfnhXmNOAoonkB2LPbsQd0YayXLAG/Fwu2zoHLsHosmFA2Xe3LERUzxMeP5d0AdiOQDlykByjA/RNuAp24LlLmXfLD9d5ACIYWZlTDNs5VympU= Received: by 10.78.31.18 with SMTP id e18mr532753hue; Mon, 08 May 2006 01:07:05 -0700 (PDT) Received: by 10.78.16.16 with HTTP; Mon, 8 May 2006 01:07:05 -0700 (PDT) Message-ID: <18e02bd30605080107j682d60c7hfa66cfc7b53b3a10@mail.gmail.com> Date: Mon, 8 May 2006 11:07:05 +0300 From: "Iantcho Vassilev" To: freebsd-stable@freebsd.org In-Reply-To: <445E875C.8010602@FreeBSD.org> MIME-Version: 1.0 References: <18e02bd30605061659m4244e961wd4a334f5825fae3d@mail.gmail.com> <445E875C.8010602@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: pf not loading the rules at boot X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 May 2006 08:07:07 -0000 On 5/8/06, Doug Barton wrote: > > Iantcho Vassilev wrote: > > Hello to all, > > > > > > I noticed such a problem: > > > > I have a 6.1 RC2 > > Step one should be to upgrade to the latest 6-stable, and run mergemaster= . I will do that in the next couple of days because i did it 5 days ago.. > and i have in rc.conf > > > > pf_enable=3D"YES" > > pflogd_enable=3D"YES" > > I think you already corrected yourself to say that you have pflog_enable, > not pflogd_, correct? I have pflog_enable from the beginning...in the list i made a mistake and wrote pflogd.. > but when the system boots i test with: > > > > pfctl -vs rules > > > > and there are not rules loaded.if i load them by hand there is no > problem.. > > When you say "load them by hand," what do you do exactly? I mean: pfctl -f /etc/pf.conf > then i made: > > > > rc_debug=3D"YES" > > Try adding rc_info=3Dyes as well. I have tried ..but nothing new is showing... > and the first thing that i saw was: when pf_enable is after pflogd_enable > ; > > it is not printed(checked).. > > The order of the variables in your rc.conf file is not relevant. > > > i put pf_load=3D"YES" >> /boot/loader.conf > > and still the ruleset is NOT loaded on boot... > > The rc system doesn't know anything about /boot/loader.conf. > > I'm also interested in what happens if you add -v to the pf_flags. What > are > the permissions on /etc/pf.conf? If i add pf_flags=3D"-v" nothing happens.. The permissions are: 755 Doug > > -- > > This .signature sanitized for your protection > >