Any ongoing effort to port /etc/rc.d/pf_boot,
/etc/pf.boot.conf from NetBSD ?
Gary Palmer
gpalmer at freebsd.org
Sun Jul 16 20:54:11 UTC 2006
On Mon, Jul 17, 2006 at 08:22:53AM +1200, Andrew Thompson wrote:
> But.. pf runs before any userland daemons are loaded so how does it
> matter if there is a short window between netif and pf if nothing is
> listening?
That is one use case for PF, where you are protecting the local system.
What if you are running PF on a multi-homed host? Is
net.inet.ip.forwarding only ever set to 1 by /etc/rc.d/routing, or
can that be set by something else before it gets that far?
Gary
More information about the freebsd-pf
mailing list