Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 12 Mar 2019 20:08:37 +0000 (UTC)
From:      Benedict Reuschling <bcr@FreeBSD.org>
To:        src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org
Subject:   svn commit: r345080 - in head: libexec/rc share/man/man5
Message-ID:  <201903122008.x2CK8b5p060298@repo.freebsd.org>

next in thread | raw e-mail | index | archive | help
Author: bcr (doc committer)
Date: Tue Mar 12 20:08:37 2019
New Revision: 345080
URL: https://svnweb.freebsd.org/changeset/base/345080

Log:
  Extend descriptions and comments about the need to create /etc/pf.conf.
  
  FreeBSD removed the default /etc/pf.conf file in previous releases, but
  the documentation kept mentioning it like any other file present in the
  system.  Change pf.conf(5) to mention in the description of the default
  ruleset location that this file needs to be created manually. Also, the
  default rc.conf file had it's comment extended a bit to let people know
  that this file does not exist by default.
  
  PR:		    231977
  Submitted by:	    koobs@
  Reviewed by:	    kp@, 0mp@
  Approved by:	    kp@
  MFC after:	    10 days
  Differential Revision:	https://reviews.freebsd.org/D19530

Modified:
  head/libexec/rc/rc.conf
  head/share/man/man5/pf.conf.5

Modified: head/libexec/rc/rc.conf
==============================================================================
--- head/libexec/rc/rc.conf	Tue Mar 12 19:34:33 2019	(r345079)
+++ head/libexec/rc/rc.conf	Tue Mar 12 20:08:37 2019	(r345080)
@@ -208,7 +208,8 @@ ipfs_enable="NO"		# Set to YES to enable saving and re
 ipfs_program="/sbin/ipfs"	# where the ipfs program lives
 ipfs_flags=""			# additional flags for ipfs
 pf_enable="NO"			# Set to YES to enable packet filter (pf)
-pf_rules="/etc/pf.conf"		# rules definition file for pf
+pf_rules="/etc/pf.conf"		# rules definition file for pf (nonexistent
+				# by default)
 pf_program="/sbin/pfctl"	# where the pfctl program lives
 pf_flags=""			# additional flags for pfctl
 pflog_enable="NO"		# Set to YES to enable packet filter logging

Modified: head/share/man/man5/pf.conf.5
==============================================================================
--- head/share/man/man5/pf.conf.5	Tue Mar 12 19:34:33 2019	(r345079)
+++ head/share/man/man5/pf.conf.5	Tue Mar 12 20:08:37 2019	(r345080)
@@ -28,7 +28,7 @@
 .\" ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 .\" POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd January 5, 2019
+.Dd March 10, 2019
 .Dt PF.CONF 5
 .Os
 .Sh NAME
@@ -3053,6 +3053,8 @@ include        = "include" filename
 Host name database.
 .It Pa /etc/pf.conf
 Default location of the ruleset file.
+The file has to be created manually as it is not installed with a
+standard installation.
 .It Pa /etc/pf.os
 Default location of OS fingerprints.
 .It Pa /etc/protocols



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201903122008.x2CK8b5p060298>