From owner-freebsd-doc@freebsd.org Mon Jan 30 07:23:49 2017 Return-Path: Delivered-To: freebsd-doc@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 77F98CC78B3 for ; Mon, 30 Jan 2017 07:23:49 +0000 (UTC) (envelope-from kaduk@mit.edu) Received: from dmz-mailsec-scanner-2.mit.edu (dmz-mailsec-scanner-2.mit.edu [18.9.25.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 128681897 for ; Mon, 30 Jan 2017 07:23:48 +0000 (UTC) (envelope-from kaduk@mit.edu) X-AuditID: 1209190d-b63ff700000036e2-04-588ee8cd9841 Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by (Symantec Messaging Gateway) with SMTP id A9.FC.14050.DC8EE885; Mon, 30 Jan 2017 02:18:37 -0500 (EST) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id v0U7Ia1F009716; Mon, 30 Jan 2017 02:18:37 -0500 Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id v0U7IWiM007696 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 30 Jan 2017 02:18:36 -0500 Date: Mon, 30 Jan 2017 01:18:33 -0600 From: Benjamin Kaduk To: Michael Keen Cc: freebsd-doc@FreeBSD.org Subject: Re: Enabling PF Message-ID: <20170130071832.GW8460@kduck.kaduk.org> References: <1485729456.1091.0@mail.mjkeen.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1485729456.1091.0@mail.mjkeen.com> User-Agent: Mutt/1.6.1 (2016-04-27) X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrEIsWRmVeSWpSXmKPExsUixG6nonv2RV+EwfYGWYtTZ7pYLfq7gh2Y PGZ8ms/ice3QasYApigum5TUnMyy1CJ9uwSujPVt75kKTrBVfDno1sA4l7WLkZ1DQsBE4qFD FyMXh5BAG5PEzKvNbBDORkaJlvsrGSGcq0wSHycvAnI4OVgEVCXOf5oHZrMJqEg0dF9mBrFF BJQk5k/qYgOxmQWkJSbs2scCYgsLSEgcWPSJHcTmFTCWePOtHcwWEtCX2L72KxNEXFDi5Mwn LBC9WhI3/r0EinOAzVn+jwPE5BQwkPg9XRekQlRAWaJhxgPmCYwCs5A0z0LSPAuheQEj8ypG 2ZTcKt3cxMyc4tRk3eLkxLy81CJdI73czBK91JTSTYyg4OSU5N3B+O+u1yFGAQ5GJR7eG8J9 EUKsiWXFlbmHGCU5mJREeRuvAYX4kvJTKjMSizPii0pzUosPMUpwMCuJ8MbcAsrxpiRWVqUW 5cOkpDlYlMR5xTUaI4QE0hNLUrNTUwtSi2CyMhwcShK8/c+BGgWLUtNTK9Iyc0oQ0kwcnCDD eYCGe4DU8BYXJOYWZ6ZD5E8x6nKc+nThJZMQS15+XqqUOO8LkCIBkKKM0jy4OaCkIpG9v+YV ozjQW8K86SBVPMCEBDfpFdASJqAl4j+6QJaUJCKkpBoYl1Td08t/p2KxqjtIYudGy2V3pmwy 05xut/ZZXsTUtmuud7gv6moVzT123KVkm9o8ZvO4/qsf/jA6zFy56qNAXWRkZ7ID45V9K+T+ Xgz9E8LBHcx0WJbnwWVrZcmNpflLJuXMFjK1tLnW+WLShDVW/nV1/4+VzuK1inivv8/h+2yW 2KqdhkKBSizFGYmGWsxFxYkAm45vKgUDAAA= X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 Jan 2017 07:23:49 -0000 On Sun, Jan 29, 2017 at 04:37:36PM -0600, Michael Keen wrote: > In 29.3.1. Enabling PF there is a reference to a default ruleset > already created at /etc/pf.conf. In my install of FreeBSD 11 there is > not a default ruleset there. The link to the pf tutorial at the top of > Chapter 29 suggests that "on FreeBSD, you'll need to create a > /etc/pf.conf file yourself." I'm just learning about FreeBSD and pf so > maybe I have misconfigured something, or the documentation may need to > be updated. It looks like that pf.conf was moved to the examples directory in r173536 and can be found in /usr/share/examples/pf/pf.conf ; the documentation has yet to be updated to that change, even 9 years later :( Please feel encouraged to file a bug report at https://bugs.freebsd.org so that the issue can be tracked. -Ben