Date: Thu, 26 Jul 2018 09:58:05 +0200 From: Patrick Lamaiziere <patfbsd@davenulle.org> To: Lars Schotte <lars@gustik.eu> Cc: freebsd-stable@freebsd.org, freebsd-net@freebsd.org Subject: Re: PF problems with 11-stable Message-ID: <20180726095805.28f86c64@mr185083> In-Reply-To: <20180722155341.065c3d4d@romy.j20.helspy.pw> References: <20180722155341.065c3d4d@romy.j20.helspy.pw>
next in thread | previous in thread | raw e-mail | index | archive | help
Le Sun, 22 Jul 2018 15:53:41 +0200, Lars Schotte <lars@gustik.eu> a =C3=A9crit : Hello, > Hey, > I am on=20 > 11.2-STABLE FreeBSD 11.2-STABLE #9 r336597 > Sun Jul 22 14:08:38 CEST 2018=20 >=20 > and I see 2 problems with PF that are still there: > 1.) set skip on lo=20 > does not work even though ifconfig lo matches. > SOLVED TEMPORARILY BY: set skip on lo0 I've seen this while upgrading from 10.3 to 11.2-RELEASE. I've added lo0 to set skip too. When the problem occurs, lo is marked '(skip)' (pfctl -vs Interfaces) but not lo0. But I can't reproduce this, this happened only one time. While I'm here, another small change is that pfctl -n does not work any more without root credentials, I'm not sure if this is a bug or a feature : % pfctl -n -f /etc/pf.conf=20 pfctl: pfi_get_ifaces: Bad file descriptor % ls -lah /etc/pf.conf=20 -rw-r--r-- 1 root wheel 97B Jul 26 09:37 /etc/pf.conf Regards,
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20180726095805.28f86c64>