From owner-freebsd-pf@FreeBSD.ORG Thu Oct 15 20:45:27 2009 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 394B3106566C for ; Thu, 15 Oct 2009 20:45:27 +0000 (UTC) (envelope-from ml@infosec.pl) Received: from v027580.home.net.pl (v027580.home.net.pl [89.161.156.148]) by mx1.freebsd.org (Postfix) with SMTP id 84E6D8FC12 for ; Thu, 15 Oct 2009 20:45:26 +0000 (UTC) Received: from localhost (HELO ?192.168.1.67?) (ml.freeside@home@127.0.0.1) by m094.home.net.pl with SMTP; Thu, 15 Oct 2009 20:18:49 -0000 Message-ID: <4AD79180.204@infosec.pl> Date: Thu, 15 Oct 2009 21:17:52 +0000 From: Michal User-Agent: Thunderbird 2.0.0.23 (X11/20091003) MIME-Version: 1.0 To: freebsd-pf@freebsd.org Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Subject: pf starts too early X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Oct 2009 20:45:27 -0000 Hello, I'm using pf on FreeBSD 8.0-RC1. My wlan0-ath0 card is set up via wpa_supplicant.conf and rc.conf (ifconfig_wlan0="WPA DHCP"). pf also starts via rc.conf Problem is that pf cannot start during the system boot because it tries to load rules before my network card gets authenticated and connected. Since wlan0 doesn't have IP address at the time I get a lot of: no IP address found for wlan0 /etc/pf.conf:151: could not parse host specification no IP address found for wlan0 pfctl: Syntax error in config file: pf rules not loaded pf enabled It fills up my dmesg output. Loading rules by hand works perfectly fine. Any ideas what is wrong or which part of the system should I tweak? Michal -- "Attacks always get better; they never get worse." -NSA