Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 4 Jul 2001 12:27:46 -0400
From:      parv <parv_@yahoo.com>
To:        cjclark@alum.mit.edu
Cc:        questions@FreeBSD.ORG
Subject:   Re: ipf -y 'ing using user ppp
Message-ID:  <20010704122746.A2642@moo.holy.cow>
In-Reply-To: <20010704012400.H1476@blossom.cjclark.org>; from cristjc@earthlink.net on Wed, Jul 04, 2001 at 01:24:00AM -0700
References:  <PAELLGOEIMDLEJNEBOBOCEIACBAA.wyldephyre2@yahoo.com> <20010704032241.A1895@moo.holy.cow> <20010704012400.H1476@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
so, Crist J. Clark shared this in my lifetime...
>
...

> 
> Err... man 8 ipf,
> 
>        -y     (SOLARIS 2  ONLY)  Manually  resync  the  in-kernel
>               interface  list  maintained  by  IP Filter with the
>               current interface status list.
> 
> Note the "SOLARIS 2 ONLY?" I've never had to use '-y,' but I do have a
> similar problem. Or do I have a different manpage?

deja vu... i have read the same statements before on this issue in
a freebsd mailing list... crist, by chance could that be from you?
by the way your manpage seems to be old, over here same man command 
shows...

  -y     Manually resync the in-kernel interface list  main-
         tained by IP Filter with the current interface sta-
         tus list.

...
> 
> That said, once I run ppp(8) once, I can bring the tun(4) interface up
> and down as much as I wish and I never need to touch ipf(8) or
> ipnat(8) again. No need for the '-y' option.

well, i have to do syncing once after reboot. after then, i can play
w/ ppp, ifconfig, ipf as much i want w/o resyncing.

just curious, are your ipf rules "default block" type? or, do you 
first block all the traffic (going in or out), then selectively let 
the traffic pass? 

as i stated earlier, when the ipf rules weren't "default block", ppp
was making connection, but not afterwords ... not w/o a "ipf -y".
so, if your rules are not "default block", you may not have to 
do the syncing. 


-- 
 so, do you like word games or scrabble?
	 - parv

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010704122746.A2642>