Date: Sat, 11 Mar 2006 14:50:04 -0500 From: "Jacob, Raymond A Jr" <raymond.jacob@navy.mil> To: <freebsd-pf@freebsd.org> Subject: when to start pfctl when using ng_one2many? Message-ID: <653C8E7D21FB654997909E77C691053F446ADF@NAEAWNYDEX21VA.nadsusea.nads.navy.mil>
next in thread | raw e-mail | index | archive | help
I am using ng_one2many to bundle interfaces togther into the interface = ngeth0 with a script in /usr/local/etc/rc.d/. I am assuming that I can not load the enable pf until ngeth0 is up? I can not figure = out how to load ngeth0 in the kernel so all I have to do is have a line with ifconfig_ngeth0=3D"promisc up" in the /etc/rc.conf. = Questions:=20 1. Is it a good idea load pf with -d flag then write a script in = /usr/local/etc/rc.d to start the firewall when all the interfaces are = up? or to set pf_flags =3D "" and have pf run from /etc/rc.d? 2. How should I handle the bundled interfaces? If there is no way to use = /etc/network.subr or /etc/rc.d/netif? Thank you, Raymond=20
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?653C8E7D21FB654997909E77C691053F446ADF>