PF and FreeBSD 5.x?
Max Laier
max at love2party.net
Sun Sep 12 18:01:09 PDT 2004
On Monday 13 September 2004 02:36, Thomas T. Veldhouse wrote:
> I noticed the existance of the /etc/pf.conf and /etc/pf.os. The file
> pf.conf makes reference to /usr/share/pf, which does not exist. Further
> looking through LINT, there does not appear to be a way to enable PF as
> opposed to IPFILTER or IPFIREWALL. So, is PF to be available for
> 5.3-RELEASE? If so, how can I expect to use this under the current
> 5.3-BETA4?
You can build pf into your kernel by putting:
device pf
device pflog
device pfsync
into your KERNCONF. The latter two are optional. Alternatively you can use the
loadable module. In any case you can enable pf by setting:
pf_enable="YES"
in /etc/rc.conf. For additional tweaks see the rc.conf(5) manpage. And yes,
this is supposed to work in BETA4 "out-of-the-box".
The missing share/pf is a shortcoming that should be addressed.
Maybe /etc/pf.conf should even be removed in order to avoid mergemaster (or
the like) running over a good pf.conf.
Can you submit the share/pf issue as a PR so that I keep track of it, please?
--
/"\ Best regards, | mlaier at freebsd.org
\ / Max Laier | ICQ #67774661
X http://pf4freebsd.love2party.net/ | mlaier at EFnet
/ \ ASCII Ribbon Campaign | Against HTML Mail and News
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: signature
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20040913/5bbad2c8/attachment.bin
More information about the freebsd-current
mailing list