From owner-freebsd-pf@FreeBSD.ORG  Fri Dec 19 11:10:35 2014
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 2EEE299E
 for <freebsd-pf@freebsd.org>; Fri, 19 Dec 2014 11:10:35 +0000 (UTC)
Received: from smtp.lamaiziere.net (net.lamaiziere.net [37.59.62.186])
 by mx1.freebsd.org (Postfix) with ESMTP id E3EBF214F
 for <freebsd-pf@freebsd.org>; Fri, 19 Dec 2014 11:10:34 +0000 (UTC)
Received: from mr185083.univ-rennes1.fr (mr185083.univ-rennes1.fr
 [129.20.185.83])
 by smtp.lamaiziere.net (Postfix) with ESMTPA id 4B1796F52
 for <freebsd-pf@freebsd.org>; Fri, 19 Dec 2014 12:01:52 +0100 (CET)
Received: from mr185083 (localhost [127.0.0.1])
 by mr185083.univ-rennes1.fr (Postfix) with ESMTP id B9285A40
 for <freebsd-pf@freebsd.org>; Wed, 17 Dec 2014 15:11:27 +0100 (CET)
Date: Wed, 17 Dec 2014 15:11:27 +0100
From: Patrick Lamaiziere <patfbsd@davenulle.org>
To: freebsd-pf@freebsd.org
Subject: Re: Getting tables to work in PF
Message-ID: <20141217151127.69671d4a@mr185083>
In-Reply-To: <d33209aa2c2e4580928c695d4618d404@BLUPR0801MB674.namprd08.prod.outlook.com>
References: <alpine.BSF.2.00.1411031433070.1220@aneurin.horsfall.org>
 <CAPBZQG2b7=iiGLsj-vtuiaWRUJ-Gk6n9JwCXxVjCMeVEqsuing@mail.gmail.com>
 <alpine.BSF.2.00.1411032002560.1220@aneurin.horsfall.org>
 <CAPBZQG2DKNGSGRNu8+MAdEtyH5vj85dpxRUY2kMwDOZ44f7PJA@mail.gmail.com>
 <alpine.BSF.2.00.1411032123560.1220@aneurin.horsfall.org>
 <BD387CA3-84BE-4BA1-8943-BD77539D8E08@lafn.org>
 <alpine.BSF.2.00.1411040921240.1220@aneurin.horsfall.org>
 <d33209aa2c2e4580928c695d4618d404@BLUPR0801MB674.namprd08.prod.outlook.com>
X-Mailer: Claws Mail 3.11.1 (GTK+ 2.24.25; amd64-portbld-freebsd10.0)
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.4.3
 (smtp.lamaiziere.net [0.0.0.0]); Fri, 19 Dec 2014 12:01:52 +0100 (CET)
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
 \(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf/>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Dec 2014 11:10:35 -0000

Le Mon, 3 Nov 2014 23:12:52 +0000,
David DeSimone <ddesimone@verio.net> a écrit :

Hello,

>     set skip on lo
> 
> I'm pretty sure the loopback name should be "lo0" instead of just
> "lo".

Yes and no, the grammar (pf.conf) 

 set skip on <ifspec>
 ifspec         = ( [ "!" ] ( interface-name | interface-group ) ) |
                      "{" interface-list "}"

and lo is a valid interface group. So it should work.

But you are right because "set skip" does not allow interface
groups, this is a bug fixed in recent OpenBSD pf.

Regards,