pfsync rc script breaks pfsync on cloned interfaces
Ian Freislich
ianf at clue.co.za
Thu Jun 25 12:58:36 UTC 2009
Hi
This change has broken pfsync start for me:
--- rc.d/pfsync 10 Apr 2007 16:42:13 -0000 1.5
+++ rc.d/pfsync 1 Jun 2009 05:35:03 -0000 1.6
@@ -1,10 +1,10 @@
#!/bin/sh
#
-# $FreeBSD: src/etc/rc.d/pfsync,v 1.5 2007/04/10 16:42:13 keramida Exp $
+# $FreeBSD: src/etc/rc.d/pfsync,v 1.6 2009/06/01 05:35:03 dougb Exp $
#
# PROVIDE: pfsync
-# REQUIRE: FILESYSTEMS netif
+# REQUIRE: FILESYSTEMS
# KEYWORD: nojail
The issue is that the syncdev is a cloned interface:
pfsync_enable="YES"
pfsync_syncdev="vlan5"
pfsync_syncpeer="41.154.0.2"
And now pfsync starts before the vlan interface starts, which means
that in practice, it doesn't start. I can see the argument that
pfsync is a "network interface", but really, it does need netif for
my case unless there is some other way to do this.
Ian
--
Ian Freislich
More information about the freebsd-current
mailing list