From owner-freebsd-stable@FreeBSD.ORG Sun May 7 09:03:21 2006 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 68B8E16A407 for ; Sun, 7 May 2006 09:03:21 +0000 (UTC) (envelope-from ianchov@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.175]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7CEC143D53 for ; Sun, 7 May 2006 09:03:19 +0000 (GMT) (envelope-from ianchov@gmail.com) Received: by ug-out-1314.google.com with SMTP id m3so1338378ugc for ; Sun, 07 May 2006 02:03:18 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=Q1Gw35TUEMaV7wmMwH0HmmHUHYvmpaNv8uoB8YDuRPg3/H3QusHukUdNqhPSFZzDou1u/5O7lE0fRXOSMXcdj3kf5g4lj7sHRjCIDwGVNfyQ9dYkbI4R6qpt3Kc886VUbADcDeaQEh7/p5wMKrTkFK58m5XsRU6OK5AvHPjkCEc= Received: by 10.78.17.1 with SMTP id 1mr421540huq; Sun, 07 May 2006 02:03:18 -0700 (PDT) Received: by 10.78.16.16 with HTTP; Sun, 7 May 2006 02:03:18 -0700 (PDT) Message-ID: <18e02bd30605070203p6a278a66tb7a487301769adbb@mail.gmail.com> Date: Sun, 7 May 2006 12:03:18 +0300 From: "Iantcho Vassilev" To: freebsd-stable@freebsd.org In-Reply-To: <18e02bd30605070157l2ecdfd45t58fe521d5e248295@mail.gmail.com> MIME-Version: 1.0 References: <18e02bd30605061659m4244e961wd4a334f5825fae3d@mail.gmail.com> <200605070248.58024.max@love2party.net> <18e02bd30605070157l2ecdfd45t58fe521d5e248295@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Re: pf not loading the rules at boot X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 May 2006 09:03:21 -0000 Also (if i didn`t mentioned it)..with rc_debug set i can`t see the pf being checked at all... in /var/log/messages i have.. May 7 12:00:30 tms_slave root: /etc/rc: INFO: checkyesno: inetd_enable is set to NO. May 7 12:00:30 tms_slave root: /etc/rc: INFO: checkyesno: hostapd_enable i= s set to NO. May 7 12:00:30 tms_slave root: /etc/rc: INFO: run_rc_command: evaluating geli2_start(). May 7 12:00:30 tms_slave root: /etc/rc: INFO: checkyesno: ftpd_enable is set to NO. May 7 12:00:30 tms_slave root: /etc/rc: INFO: checkyesno: bsnmpd_enable is set to NO. May 7 12:00:30 tms_slave root: /etc/rc: INFO: checkyesno: background_fsck is set to YES but nothing about PF. Any suggestions? On 5/7/06, Iantcho Vassilev wrote: > > /etc/rc.d/pf rcvar - returns YES > my pf doesn`t have any ALTQ use > I will try pf_flags -v > > > Any other suggestions... > > > On 5/7/06, Max Laier < max@love2party.net> wrote: > > > > On Sunday 07 May 2006 01:59, Iantcho Vassilev wrote: > > > I noticed such a problem: > > > > > > I have a 6.1 RC2 and i have in rc.conf > > > > > > pf_enable=3D"YES" > > > pflogd_enable=3D"YES" > > > > > > but when the system boots i test with: > > > > > > pfctl -vs rules > > > > > > and there are not rules loaded.if i load them by hand there is no > > problem.. > > > then i made: > > > > > > rc_debug=3D"YES" > > > > > > and the first thing that i saw was: when pf_enable is after > > pflogd_enable ; > > > it is not printed(checked).. > > > > > > then i changed the place of pf and pflogd in the rc.conf and i saw > > some > > > output in the /var/log/messages.. > > > but still the ruleset wasn`t loaded.. > > > > > > i put pf_load=3D"YES" >> /boot/loader.conf > > > and still the ruleset is NOT loaded on boot... > > > > What is your pf.conf like? Do you have ALTQ in use? Do you maybe try > > to use > > ALTQ on an interface that is created later on (tun0 or the like)? What > > does > > "/etc/rc.d/{pf, pflog} rcvar" give you? Does "/etc/rc.d/pf start" work > > after > > it failed on boot? Try setting pf_flags=3D"-v" to get additional error > > messages. > > > > -- > > /"\ Best regards, | mlaier@freebsd.org > > \ / Max Laier | ICQ #67774661 > > X http://pf4freebsd.love2party.net/ | mlaier@EFnet > > / \ ASCII Ribbon Campaign | Against HTML Mail and News > > > > > > >