Date: Tue, 31 Jan 2006 13:25:10 -0800 From: Louis Kowolowski <louisk@cryptomonkeys.com> To: freebsd-mobile@freebsd.org Subject: Re: (wlan) how to update a pf rules set automaticly Message-ID: <20060131212510.GC1424@cryptomonkeys.com> In-Reply-To: <20060131205453.GY94023@bunrab.catwhisker.org> References: <20060131204441.GB1047@binky.0xfce3.net> <20060131205453.GY94023@bunrab.catwhisker.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--hCRFYJKfs6IGypzU Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jan 31, 2006 at 12:54:53PM -0800, David Wolfskill wrote: > On Tue, Jan 31, 2006 at 09:44:41PM +0100, Gordon Bergling wrote: > > ... > > Off cource, I could write a script which updates my pf.conf or restart > > pf with a different config file, but I would like to have some more > > magic. ;) > >=20 > > Has anyone an Idea? >=20 > What I do, using ipfw, is have 2 scripts. >=20 I'm doing something similar but using pf instead. I leave certain types of traffic open (dhcp, and dns, and ntp) and block the rest. Then when dhclie= nt calls dhclient-exit-hooks, I execute a new set of pf rules based on the info I got from dhclient. -- Louis Kowolowski KE7BAX louisk@cryptomonkeys.com Cryptomonkeys: http://www.cryptomonkeys.com/~louisk Irrigation of the land with seawater desalinated by fusion power is ancient. It's called rain. --hCRFYJKfs6IGypzU Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (SunOS) iD8DBQFD39W1ZFV69jbeB6gRAn1wAKDUBlre3CwF/b4swNX5bim+NTJHVgCfddRd LkH6FkYC6Dw6G/ocmTs45to= =TcQh -----END PGP SIGNATURE----- --hCRFYJKfs6IGypzU--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060131212510.GC1424>