From owner-freebsd-questions@FreeBSD.ORG Wed May 14 18:07:16 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6B4FD106566B for ; Wed, 14 May 2008 18:07:16 +0000 (UTC) (envelope-from xsappyx@gmail.com) Received: from yw-out-2324.google.com (yw-out-2324.google.com [74.125.46.29]) by mx1.freebsd.org (Postfix) with ESMTP id 28EF18FC1E for ; Wed, 14 May 2008 18:07:15 +0000 (UTC) (envelope-from xsappyx@gmail.com) Received: by yw-out-2324.google.com with SMTP id 9so4663ywe.13 for ; Wed, 14 May 2008 11:07:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=MWbibKGJniTeKNel56TMOubzbYSo356750Lz8CLijqE=; b=mBLIeqqFrLAY9I6ft/JyF6bqp0kXMdAyl/sWMDFI0QAENMbjTGw08/p5knvagRNUUzDCafroilPJi6vDMOr3vnNOLMHrJ3shy22i66dR0DDp7CbQXQinYtuv9GgboahXrcOnN3ngMRga4K4J1+LrKa1EnQFwGRcpZkwN30HKifM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=fFrJLDI0W72QfJ6ie/91Tuto1kJqczqohlYGKARISpPTBUHtFGRVs4umG7VHfULpDs7A4FovWfe7td4PLDrDveX+RlKaylYQ0aRxtVpe09TqB6Ki1fABLzCrP53ZvN6DXtYM6D118SQIcRMdnVMCBZRe01x138gs2fGpJ9zKVMY= Received: by 10.150.72.11 with SMTP id u11mr1364182yba.120.1210788423222; Wed, 14 May 2008 11:07:03 -0700 (PDT) Received: by 10.150.204.4 with HTTP; Wed, 14 May 2008 11:07:03 -0700 (PDT) Message-ID: <8206ae960805141107i7aa1df77y2f03b1a421e86450@mail.gmail.com> Date: Wed, 14 May 2008 11:07:03 -0700 From: xSAPPYx To: RW In-Reply-To: <20080514132455.4a9e2755@gumby.homeunix.com.> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <15af975d0805131824i142a4847u852a6ad09f61e526@mail.gmail.com> <20080514132455.4a9e2755@gumby.homeunix.com.> Cc: freebsd-questions@freebsd.org Subject: Re: problem on pf @ freebsd 7.0 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 May 2008 18:07:16 -0000 Take a look in /etc/defaults/rc.conf The bits for PF are already there. All you should need is to set pf_enable="YES" A quick guess would be that that /etc/defaults/rc.conf is loaded after /etc/rc.conf, and pf_enable is reset to NO, but that is just a guess. Here is my pf section from /etc/defaults/rc.conf that brings pf up on boot: pf_enable="YES" # Set to YES to enable packet filter (pf) pf_rules="/etc/pf.conf" # rules definition file for pf pf_program="/sbin/pfctl" # where the pfctl program lives pf_flags="" # additional flags for pfctl pflog_enable="YES" # Set to YES to enable packet filter logging pflog_logfile="/var/log/pflog" # where pflogd should store the logfile pflog_program="/sbin/pflogd" # where the pflogd program lives pflog_flags="" # additional flags for pflogd On Wed, May 14, 2008 at 5:24 AM, RW wrote: > On Wed, 14 May 2008 09:24:52 +0800 > "CyberSans AirBort" wrote: > >> and guess what? pf is not loading when startup. i have to manually >> restarted the pf using /etc/rc.d/pf restart > > What exactly do you mean by "not loading"? Do you mean not working? > > Are there any pf related error messages in /var/log/messages. > > In some case pf does need a /etc/rc.d/pf resync (or restart) done > at a later stage. e.g if pf.conf uses hostnames that can't be resolved > at that stage of the boot. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >