table persist file
Gergely CZUCZY
phoemix at harmless.hu
Wed Oct 11 08:10:01 PDT 2006
On Wed, Oct 11, 2006 at 05:04:58PM +0200, Jon Otterholm wrote:
> Hi.
>
> I have a table in my pf.conf:
>
> table <commit> persist file "/etc/pf/commit"
let me quote the manual, pf.conf(5) for you:
--- chop with axe here ---
A table can also be initialized with an address list specified in one or
more external files, using the following syntax:
--- chop with axe here ---
And now, some terminology.
the process named "initalization" means, to set the
initalial values of some object. the initial value
is the value that the object has at startup-time.
> When I add IP's to the table nothing gets into the file even though they are listed in the table.
check the part of the manual, and reinterpret what i have read.
>
> Any thoughts?
Hint: it's nowhere said that the pf will synchronize the
contents of the file with the table.
use a crontab script for this, like
05 * * * * root pfctl -t ftp-blacklist -Tshow > /etc/pf/ftp-blacklist
have fun,
Gergely Czuczy
mailto: gergely.czuczy at harmless.hu
--
Weenies test. Geniuses solve problems that arise.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 1276 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-pf/attachments/20061011/d856c07c/attachment.pgp
More information about the freebsd-pf
mailing list