From owner-freebsd-stable@FreeBSD.ORG Fri Feb 25 18:05:24 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4E887106566B for ; Fri, 25 Feb 2011 18:05:24 +0000 (UTC) (envelope-from josh.carroll@gmail.com) Received: from mail-iw0-f182.google.com (mail-iw0-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id 167FA8FC1D for ; Fri, 25 Feb 2011 18:05:21 +0000 (UTC) Received: by iwn33 with SMTP id 33so1462397iwn.13 for ; Fri, 25 Feb 2011 10:05:21 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:reply-to:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=+2ekk2AQausa4ZcopIA6LTMFXD60kOHMtsy/lPpVVjk=; b=NHe4kFyvSL9xG6rlXRNlU+Hd0S+SnzBux1iRXC8H3TZ1g/SthloVQZqsCymHFjEJXt ClBtgSbpnw9gru3dZqBlHBT8C+ly/ADzckYDgAkyYHfMb3ThbUXXkyS3WcLY59jDTECL 1dYTYtt5wRb7uOp5MBP8iOLuhL9h6DJ7ar2dQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:date:message-id :subject:from:to:cc:content-type:content-transfer-encoding; b=WQSqR0ymPpDS6XUkXQVM4bpVOUxXg5wBMJfteWtGmB/NsvgITBLpM84aRq+m44jqQF yto2cFYlxV9pXBkNS5tXJsg72artKznBZfp6GJzUMFa1GQMoOTWfk14MODSTtGL+vPVV mI5rK2h3YBX7h1mjg4Xi957iWYkBax/LcoWqw= MIME-Version: 1.0 Received: by 10.231.13.138 with SMTP id c10mr3058125iba.97.1298655350543; Fri, 25 Feb 2011 09:35:50 -0800 (PST) Received: by 10.231.178.11 with HTTP; Fri, 25 Feb 2011 09:35:50 -0800 (PST) In-Reply-To: <4D67E2BC.6070202@unsane.co.uk> References: <4D67E2BC.6070202@unsane.co.uk> Date: Fri, 25 Feb 2011 09:35:50 -0800 Message-ID: From: Josh Carroll To: Vincent Hoffman Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: FreeBSD Stable Mailing List Subject: Re: 8.2-RELEASE pf rules not loading X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: josh.carroll@gmail.com List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 25 Feb 2011 18:05:24 -0000 > Hi All, > =A0 =A0 =A0 =A0 =A0 =A0Just upgraded my home machine to 8.2-RELEASE via > freebsd-update remotely (spare time at work.) and on reboot my pf > ruleset isnt being loaded. running '/etc/rc.d/pf start' once its booted > does start it fine though. Any suggestions on debugging or shall i just > try a verbose boot and watch the console when I get home? > I still have > > pf_enable=3D"YES" =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0# Set to YES to enab= le packet filter (pf) > pflog_enable=3D"YES" =A0 =A0 =A0 =A0 =A0 =A0 =A0 # Set to YES to enable p= acket filter > logging > > in /etc/rc.conf Is your interface dynamic (e.g. using DHCP)? If so, you might try changing: ifconfig_=3D"DHCP" to ifconfig_=3D"SYNCDHCP" It's possible the network hasn't come up properly yet or there is no IP assigned. Failing that, you can set: rc_debug=3D"YES" in rc.conf then watch at boot time if there are any odd messages when it attempts to start pf. Josh