pf starts, but no rules
Dan Langille
dan at langille.org
Wed Feb 14 12:47:58 UTC 2007
On 13 Feb 2007 at 21:37, Kian Mohageri wrote:
> On 2/13/07, Max Laier <max at love2party.net> wrote:
> >
> > Does anyone have time to get something like this going for FreeBSD as
> > well?
>
>
>
> I tested out some solutions. I'm not sure if this is what you guys were
> looking to do, but NetBSD's solution seems fine. I'm not thrilled about
> using another rc-script to solve this issue, but I couldn't think of a
> simpler/more elegant solution.
>
> Diff is against CURRENT, and I don't currently have any boxes running
> CURRENT, but I tested it as much as I could. I'll get a box up to CURRENT
> later to test other patches.
>
> I couldn't decide what to pass in this initial ruleset. Passing SSH seems
> safe/smart, but surely not everyone will agree.
So long as the initial ruleset can be specified in the config, I see
no problem. For example: pf_rules_initial="/etc/pf_intial.rules
--
Dan Langille : Software Developer looking for work
my resume: http://www.freebsddiary.org/dan_langille.php
PGCon - The PostgreSQL Conference - http://www.pgcon.org/
More information about the freebsd-pf
mailing list