Date: Mon, 20 Apr 2026 14:24:15 +0000 From: Kristof Provost <kp@FreeBSD.org> To: src-committers@FreeBSD.org, dev-commits-src-all@FreeBSD.org, dev-commits-src-main@FreeBSD.org Cc: Ross Williams <ross@ross-williams.net> Subject: git: 19eecf94fa16 - main - pfctl: clarify usage of load option flags Message-ID: <69e6370f.23acb.70681189@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch main has been updated by kp: URL: https://cgit.FreeBSD.org/src/commit/?id=19eecf94fa16aac6f90a4610d2f342f70060674a commit 19eecf94fa16aac6f90a4610d2f342f70060674a Author: Ross Williams <ross@ross-williams.net> AuthorDate: 2026-04-17 15:19:23 +0000 Commit: Kristof Provost <kp@FreeBSD.org> CommitDate: 2026-04-20 12:50:40 +0000 pfctl: clarify usage of load option flags `pfctl -A`, `-N`, `-O`, and `-R` restrict which rule types and options are loaded. The man page language ("Load only...") does not make it clear that these options can be combined to (re)load multiple rule types and/or options without reloading the entire packet filter. Add language to make it explicitly clear that these flags combine. Reviewed by: kp Signed-off-by: Ross Williams <ross@ross-williams.net> --- sbin/pfctl/pfctl.8 | 24 ++++++++++++++++++++++++ 1 file changed, 24 insertions(+) diff --git a/sbin/pfctl/pfctl.8 b/sbin/pfctl/pfctl.8 index 05a76641ca8d..53f2c369108f 100644 --- a/sbin/pfctl/pfctl.8 +++ b/sbin/pfctl/pfctl.8 @@ -110,6 +110,12 @@ The options are as follows: .It Fl A Load only the queue rules present in the rule file. Other rules and options are ignored. +Can be combined with the +.Fl N , +.Fl O , +and +.Fl R +flags to load multiple rule types without (re)loading all rules. .It Fl a Ar anchor Apply flags .Fl f , @@ -399,11 +405,23 @@ Allows single options to be modified without disturbing the others: .It Fl N Load only the NAT rules present in the rule file. Other rules and options are ignored. +Can be combined with the +.Fl A , +.Fl O , +and +.Fl R +flags to load multiple rule types without (re)loading all rules. .It Fl n Do not actually load rules, just parse them. .It Fl O Load only the options present in the rule file. Other rules and options are ignored. +Can be combined with the +.Fl A , +.Fl N , +and +.Fl R +flags to load multiple rule types without (re)loading all rules. .It Fl o Ar level Control the ruleset optimizer, overriding any rule file settings. .Pp @@ -432,6 +450,12 @@ Only print errors and warnings. .It Fl R Load only the filter rules present in the rule file. Other rules and options are ignored. +Can be combined with the +.Fl A , +.Fl N , +and +.Fl O +flags to load multiple rule types without (re)loading all rules. .It Fl r Perform reverse DNS lookups on states and tables when displaying them. .Fl Nhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?69e6370f.23acb.70681189>