Date: Thu, 27 Dec 2018 06:20:47 -0800 From: Craig Leres <leres@freebsd.org> To: Willem Jan Withagen <wjw@digiware.nl>, Eugene Grosbein <eugen@grosbein.net>, Dave Cottlehuber <dch@skunkwerks.at>, freebsd-hackers@freebsd.org Subject: Re: rcorder for vpn-like tunnels during early rc.d startup Message-ID: <8aa1f557-aa2b-76ce-1feb-cd7451e6a3a3@freebsd.org> In-Reply-To: <f2d7e351-f895-5f9e-d4fd-d6db34ae5ba4@digiware.nl> References: <1545487265.3497867.1616158504.69E513B4@webmail.messagingengine.com> <f9a31f17-0e5f-265a-60ac-010e0c16bc22@grosbein.net> <b86faac8-9428-7935-6444-a9a1ac032250@freebsd.org> <8a8c6e8e-4781-9e03-36cf-b7974cb719bc@grosbein.net> <f2d7e351-f895-5f9e-d4fd-d6db34ae5ba4@digiware.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12/27/18 3:09 AM, Willem Jan Withagen wrote: > Might want to use the ifup/ifdown scripts to add the specifics for the > VPN that just came up. Tricky part is how to get things in the tables at > the right place. That's a pretty good idea. After I wrote the working "additional rc.d script" solution I learned about ifup/ifdown scripts which seems cleaner but never went back to try that method. > So with IPFW I use specific line numbers reserved to insert certain > rules. (using counter rules to split the fw code into blocks) (I like pf and really don't want to go back to ipfw.) Craig
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8aa1f557-aa2b-76ce-1feb-cd7451e6a3a3>