From owner-svn-src-head@freebsd.org  Tue Mar 12 20:08:38 2019
Return-Path: <owner-svn-src-head@freebsd.org>
Delivered-To: svn-src-head@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id B8642153D004;
 Tue, 12 Mar 2019 20:08:38 +0000 (UTC) (envelope-from bcr@FreeBSD.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::19:3])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "mxrelay.nyi.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 5B51E838F2;
 Tue, 12 Mar 2019 20:08:38 +0000 (UTC) (envelope-from bcr@FreeBSD.org)
Received: from repo.freebsd.org (repo.freebsd.org
 [IPv6:2610:1c1:1:6068::e6a:0])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 32F4E27A5A;
 Tue, 12 Mar 2019 20:08:38 +0000 (UTC) (envelope-from bcr@FreeBSD.org)
Received: from repo.freebsd.org ([127.0.1.37])
 by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id x2CK8cKA060301;
 Tue, 12 Mar 2019 20:08:38 GMT (envelope-from bcr@FreeBSD.org)
Received: (from bcr@localhost)
 by repo.freebsd.org (8.15.2/8.15.2/Submit) id x2CK8b5p060298;
 Tue, 12 Mar 2019 20:08:37 GMT (envelope-from bcr@FreeBSD.org)
Message-Id: <201903122008.x2CK8b5p060298@repo.freebsd.org>
X-Authentication-Warning: repo.freebsd.org: bcr set sender to bcr@FreeBSD.org
 using -f
From: Benedict Reuschling <bcr@FreeBSD.org>
Date: Tue, 12 Mar 2019 20:08:37 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-head@freebsd.org
Subject: svn commit: r345080 - in head: libexec/rc share/man/man5
X-SVN-Group: head
X-SVN-Commit-Author: bcr
X-SVN-Commit-Paths: in head: libexec/rc share/man/man5
X-SVN-Commit-Revision: 345080
X-SVN-Commit-Repository: base
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Rspamd-Queue-Id: 5B51E838F2
X-Spamd-Bar: --
Authentication-Results: mx1.freebsd.org
X-Spamd-Result: default: False [-2.95 / 15.00];
 local_wl_from(0.00)[FreeBSD.org];
 NEURAL_HAM_MEDIUM(-1.00)[-0.997,0];
 NEURAL_HAM_LONG(-1.00)[-1.000,0];
 NEURAL_HAM_SHORT(-0.95)[-0.954,0];
 ASN(0.00)[asn:11403, ipnet:2610:1c1:1::/48, country:US]
X-BeenThere: svn-src-head@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SVN commit messages for the src tree for head/-current
 <svn-src-head.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-head/>
List-Post: <mailto:svn-src-head@freebsd.org>
List-Help: <mailto:svn-src-head-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Mar 2019 20:08:39 -0000

Author: bcr (doc committer)
Date: Tue Mar 12 20:08:37 2019
New Revision: 345080
URL: https://svnweb.freebsd.org/changeset/base/345080

Log:
  Extend descriptions and comments about the need to create /etc/pf.conf.
  
  FreeBSD removed the default /etc/pf.conf file in previous releases, but
  the documentation kept mentioning it like any other file present in the
  system.  Change pf.conf(5) to mention in the description of the default
  ruleset location that this file needs to be created manually. Also, the
  default rc.conf file had it's comment extended a bit to let people know
  that this file does not exist by default.
  
  PR:		    231977
  Submitted by:	    koobs@
  Reviewed by:	    kp@, 0mp@
  Approved by:	    kp@
  MFC after:	    10 days
  Differential Revision:	https://reviews.freebsd.org/D19530

Modified:
  head/libexec/rc/rc.conf
  head/share/man/man5/pf.conf.5

Modified: head/libexec/rc/rc.conf
==============================================================================
--- head/libexec/rc/rc.conf	Tue Mar 12 19:34:33 2019	(r345079)
+++ head/libexec/rc/rc.conf	Tue Mar 12 20:08:37 2019	(r345080)
@@ -208,7 +208,8 @@ ipfs_enable="NO"		# Set to YES to enable saving and re
 ipfs_program="/sbin/ipfs"	# where the ipfs program lives
 ipfs_flags=""			# additional flags for ipfs
 pf_enable="NO"			# Set to YES to enable packet filter (pf)
-pf_rules="/etc/pf.conf"		# rules definition file for pf
+pf_rules="/etc/pf.conf"		# rules definition file for pf (nonexistent
+				# by default)
 pf_program="/sbin/pfctl"	# where the pfctl program lives
 pf_flags=""			# additional flags for pfctl
 pflog_enable="NO"		# Set to YES to enable packet filter logging

Modified: head/share/man/man5/pf.conf.5
==============================================================================
--- head/share/man/man5/pf.conf.5	Tue Mar 12 19:34:33 2019	(r345079)
+++ head/share/man/man5/pf.conf.5	Tue Mar 12 20:08:37 2019	(r345080)
@@ -28,7 +28,7 @@
 .\" ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 .\" POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd January 5, 2019
+.Dd March 10, 2019
 .Dt PF.CONF 5
 .Os
 .Sh NAME
@@ -3053,6 +3053,8 @@ include        = "include" filename
 Host name database.
 .It Pa /etc/pf.conf
 Default location of the ruleset file.
+The file has to be created manually as it is not installed with a
+standard installation.
 .It Pa /etc/pf.os
 Default location of OS fingerprints.
 .It Pa /etc/protocols