From owner-freebsd-pf@FreeBSD.ORG Thu Sep 7 13:00:03 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C392B16A4DF for ; Thu, 7 Sep 2006 13:00:03 +0000 (UTC) (envelope-from kes-kes@yandex.ru) Received: from mx18.yandex.ru (smtp2.yandex.ru [213.180.200.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id D9A6743D4C for ; Thu, 7 Sep 2006 13:00:01 +0000 (GMT) (envelope-from kes-kes@yandex.ru) Received: from [82.207.99.31] ([82.207.99.31]:56311 "EHLO homekes" smtp-auth: "kes-kes" TLS-CIPHER: TLS-PEER-CN1: ) by mail.yandex.ru with ESMTP id S3375645AbWIGM76 (ORCPT ); Thu, 7 Sep 2006 16:59:58 +0400 X-Comment: RFC 2476 MSA function at smtp2.yandex.ru logged sender identity as: kes-kes Date: Thu, 7 Sep 2006 16:00:02 +0300 From: KES X-Mailer: The Bat! (v3.62.12) Professional Organization: SaftTen X-Priority: 3 (Normal) Message-ID: <922498059.20060907160002@yandex.ru> To: freebsd-pf@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: pf fails to start X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: KES List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Sep 2006 13:00:03 -0000 Hello pf fails to start if interface doesnt exist or IP address not assigned I have trobles with tun0 (pppeo connection) Look at next picture: 1) power fail, 2) FreeBSD starting, 3) do pppoe connection to provider 3.a) pppoe fail (ISP has some problem) 4) pf starts and fails =(( 5) FreeBSD fall to infinit loop (I have wait 15minutes and then pressCTRL+C) Copy of console messages: pflog promiscios pf enabled pflog: here some message (I don't remember) some experements: kes# ps ax|grep ppp 357 ?? Ss 0:18.88 /usr/sbin/ppp -ddial -unit1 adsl 373 ?? Rs 46:53.56 /usr/sbin/ppp -dedicated -quiet -unit0 leased 47226 p2 DL+ 0:00.00 grep ppp #KILL pppoe connection kes# kill -9 373 kes# kill -9 373 373: No such process #Reload pf.conf kes# pfctl -f /etc/pf.conf no IP address found for tun0 /etc/pf.conf:48: could not parse host specification no IP address found for tun0 /etc/pf.conf:66: could not parse host specification no IP address found for tun0 /etc/pf.conf:100: could not parse host specification no IP address found for tun0 /etc/pf.conf:101: could not parse host specification pfctl: Syntax error in config file: pf rules not loaded #start pppoe kes# /usr/sbin/ppp -dedicated -quiet -unit0 leased kes# pfctl -f /etc/pf.conf #no errors here. kes# So I have no "Syntax error in config file" TO authur of pf: You must change behavior of pf like ipfw does. ipfw only do warning messages in situations like this. KES mailto:kes-kes@yandex.ru