Date: Wed, 6 Sep 2006 17:03:56 +0100 From: "Peter Wullinger" <peter.wullinger@gmail.com> To: "=?KOI8-R?B?98zBxMnNydIg68HQ1dPUyc4=?=" <msgs_for_me@mail.ru> Cc: freebsd-pf@freebsd.org Subject: Re: Troubles with PF Tables Message-ID: <bf675fc00609060903l467c6b3x38193c768cb085da@mail.gmail.com> In-Reply-To: <E1GKzij-000Jsc-00.msgs_for_me-mail-ru@f80.mail.ru> References: <E1GKzij-000Jsc-00.msgs_for_me-mail-ru@f80.mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
2006/9/6, Владимир Капустин <msgs_for_me@mail.ru>: > I have table "spamers", which renews by cron with help of easy script: > > cp /home/netup/spamers /pf/spamers; > pfctl -d; > sleep 15; > pfctl -e -f /etc/pf.conf; see the manpage for pfctl(8). You can update a table without having to reload the entire ruleset: # pfctl -t spammers -T replace -f /pf/spamers I use this with trojan port blocklists quite successfully. > but after that actually table "spamers" have no changes > > if I do the same manually (disable & enable PF) the changes take effect > how can I implement some automatization on this process? I cannot really verify this here. "pfctl -e -f" seems to correctly enable the packet filter and load the new ruleset. A short glance at pfctl-source seems to confirm that this works correctly. Cheers, Peter
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bf675fc00609060903l467c6b3x38193c768cb085da>