A way to load PF rules at startup using OpenVPN
Maciej Suszko
maciej at suszko.eu
Tue Jan 20 09:12:04 UTC 2015
On Mon, 19 Jan 2015 18:53:40 +0200
Panagiotis Atmatzidis <atma at convalesco.org> wrote:
[...]
> I think that this has something to do with ‘tun0’ interface which is
> the last thing that is loaded at boot. Probably PF runs before this,
> sees rules that it doesn’t understand (related to tun0) and comes up
> short, then tun0 is loaded but it’s too late.
That's simple to test, just destroy your tun device and check the
output of:
# pfctl -nvf /etc/pf.conf
--
regards, Maciej Suszko.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20150120/8f1d4522/attachment.sig>
More information about the freebsd-questions
mailing list