From owner-freebsd-pf@FreeBSD.ORG Tue Jan 17 11:14:58 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 289D716A41F for ; Tue, 17 Jan 2006 11:14:58 +0000 (GMT) (envelope-from dinzdale@gmail.com) Received: from zproxy.gmail.com (zproxy.gmail.com [64.233.162.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id 586F143D48 for ; Tue, 17 Jan 2006 11:14:57 +0000 (GMT) (envelope-from dinzdale@gmail.com) Received: by zproxy.gmail.com with SMTP id l1so1172526nzf for ; Tue, 17 Jan 2006 03:14:56 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=B60KpVSvwXeuAOWTtKcpdN33Vnehf3tKYU4AgxOTWviXFyidkA0URW+jwt6m4lfR4Dq7blo48kjz1iB/wZhnBCmjmaWYmM7A30POSvnQfCeJ5dWUBZ/GhjObcrarziyPVLCcSbN7VO079oSCpRD2ADzQNhKdpL+NNFj9F5q+xak= Received: by 10.36.9.16 with SMTP id 16mr5792221nzi; Tue, 17 Jan 2006 03:14:56 -0800 (PST) Received: by 10.36.250.66 with HTTP; Tue, 17 Jan 2006 03:14:56 -0800 (PST) Message-ID: Date: Tue, 17 Jan 2006 13:14:56 +0200 From: stephen To: "derth@wbs.co.za" In-Reply-To: <55e8a96c0601162221w24026424j6c2eeec684db8bb1@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <18525.196.2.148.70.1137476403.squirrel@webmail.wbs.co.za> <55e8a96c0601162221w24026424j6c2eeec684db8bb1@mail.gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: PF + PPPoE X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Jan 2006 11:14:58 -0000 what rudi means to say is, in his rc.conf he has stuck instructions for his ppp to start on boot, and for pf to load on boot. problem is freebsd creates tun0 when ppp runs for the first time, not when the machine boots up, and as his pf.conf refers to tun0, pf won't start if it runs before ppp has started as there is no tun0 device and pf bombs out saying 'no such device'. (i know cause i had similar issue ;-) what i did was make a start script in /usr/local/etc/rc.d/ that runs ppp, sleeps for 30 seconds (should be more than enough - i use telkom's adsl which takes about 10 seconds, and i think my mate's iburst connects in less than 30 seconds) and -then- runs pf -f /etc/pf.conf that should do the trick stephen On 1/16/06, derth@wbs.co.za wrote: > Good day, > > I am using freebsd 6.0 with PF and running a ADSL PPPoE internet connecti= on. > > My PF ruleset uses tun0 for the external interface but sometimes the ppp > dialler does not start in time and the PF rules fail to load. Then after > a few seconds the PPPoE connection get's established and I have no > firewall. > > Does anyone know of a way around this problem? > > Without the ruleset it's going to be kind of difficult to help. This > does work, which means there's something wrong with your rules. > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >