Using pf.conf with public access points.
André Lucas
andre at ae-35.com
Sun Mar 9 23:32:29 UTC 2014
On 9 March 2014 23:18, John-Mark Gurney <jmg at funkthat.com> wrote:
> Joe Nosay wrote this message on Sun, Mar 09, 2014 at 15:36 -0400:
> > 2. How do I compensate for the use of public access points when the IP
> > addresses will always be different?
>
> it doesn't appear that pf has this ability, but it looks like ipfw
> has this, from ipfw(8):
> me matches any IP address configured on an interface in
> the
> system.
>
> So, maybe switching to ipfw might be an option..
>
pf can follow the IP address of an interface. From the pf.conf(5) manual
page, "When the interface name is surrounded by parentheses, the rule is
automatically updated whenever the interface changes its address. The
ruleset does not need to be reloaded. This is especially useful with nat."
-André
More information about the freebsd-net
mailing list