pf + kldload

[Anthony Chavez]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi, all.

When enabling pf on a 5.3-RELENG-p2 box, I simply attempted to load the
kernel module using kldload and loaded a default-deny ruleset using
pfctl.  kldstat shows that the module has in fact loaded.

However, pfctl shows that no packet evaulations are being performed and
thus, no packets are being dropped.

This particular machine has a significant amount of uptime, so I'd like
to avoid rebooting it if possible, but is that the only course of
action that I can take at this point?  If not, what am I missing?

Thanks!

- -- 
Anthony Chavez                                 http://anthonychavez.org/
mailto:acc at anthonychavez.org         jabber:acc at jabber.anthonychavez.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (Darwin)

iD8DBQFCDYYvbZTbIaRBRXERArpDAJ9vhClecI220UFzsF21qfk63aZcjwCfXKU3
6SQ/V6PRUpCahXNliMywkF0=
=4BSk
-----END PGP SIGNATURE-----