Date: Tue, 25 Aug 2009 17:27:40 +0200 From: peter@bsdly.net (Peter N. M. Hansteen) To: freebsd-pf@freebsd.org Subject: Re: Positive condition for adding in the table? Message-ID: <87ab1nud5f.fsf@thingy.bsdly.net> In-Reply-To: <4A93B203.2000305@gmail.com> (Ivan Radovanovic's message of "Tue, 25 Aug 2009 11:42:27 %2B0200") References: <4A93B203.2000305@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Ivan Radovanovic <rivanr@gmail.com> writes: > I am new into pf configuration and I am curious if it is possible to add > some host into table in firewall rules if some conditions are met (not > if they are broken). There are a couple of apps out there that will update pf tables for you based on various conditions. One is authpf (a non-interactive user shell, frequently used for stuff like http://home.nuug.no/~peter/pf/en/vegard.authpf.html), likely something to build on. Then I was going to write that dhcpd can manipulate tables (for example, adding addresses it has assigned to a pf table), but then I realized that OpenBSD's dhcpd is not identical to the FreeBSD one so that particular feature may not be available immediately to readers of this list. Tables are nice, more apps that interface with pf through tables would likely be welcome. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?87ab1nud5f.fsf>