From owner-freebsd-questions@FreeBSD.ORG Tue Jan 20 13:39:23 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3C0C03FF for ; Tue, 20 Jan 2015 13:39:23 +0000 (UTC) Received: from nikki.convalesco.org (convalesco.org [IPv6:2a01:7c8:aab0:264::100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 991E5F1C for ; Tue, 20 Jan 2015 13:39:22 +0000 (UTC) Received: from hilbert.lan (130.43.124.168.dsl.dyn.forthnet.gr [130.43.124.168]); by nikki.convalesco.org (OpenSMTPD) with ESMTPSA id ff2eb314; TLS version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-SHA bits=256 verify=NO; Tue, 20 Jan 2015 14:39:19 +0100 (CET) Subject: Re: A way to load PF rules at startup using OpenVPN Mime-Version: 1.0 (Mac OS X Mail 8.1 \(1993\)) Content-Type: multipart/signed; boundary="Apple-Mail=_EEADD4A2-9CDF-4A03-8A6A-7D855B5E24E9"; protocol="application/pgp-signature"; micalg=pgp-sha1 X-Pgp-Agent: GPGMail 2.5b4 From: Panagiotis Atmatzidis In-Reply-To: <20150120140631.377bee87@helium> Date: Tue, 20 Jan 2015 15:39:13 +0200 Message-Id: <44269B05-51E7-4279-B828-1990DC73251F@convalesco.org> References: <20150120101144.735f0b67@helium> <20150120140631.377bee87@helium> To: Maciej Suszko X-Mailer: Apple Mail (2.1993) X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1 Cc: FreeBSD Questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jan 2015 13:39:23 -0000 --Apple-Mail=_EEADD4A2-9CDF-4A03-8A6A-7D855B5E24E9 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Hello, > On 20 Jan 2015, at 15:06, Maciej Suszko wrote: >=20 > On Tue, 20 Jan 2015 14:18:28 +0200 > Panagiotis Atmatzidis wrote: >=20 > [=E2=80=A6] >=20 > Post your pf.conf, pfctl -nvf /etc/pf.conf with tun0 present and > absent, look at dmesg -a, messages etc. Using =E2=80=98pfctl -nvf /etc/pf.conf=E2=80=99 without tun0 comes up = with the following error: No IP address found for tun0 /etc/pf.conf:86: could not parse host specification Line is 86 is: = https://gist.github.com/atmosx/2dcff31a0d8868d4b1c7#file-pf-conf-L83 = But how do I bypass this using pf.conf alone? The .conf needs to become = =E2=80=98dynamic=E2=80=99 somehow. >=20 > Just my 2 cents... > -- > regards, Maciej Suszko. Panagiotis (atmosx) Atmatzidis email: atma@convalesco.org URL: http://www.convalesco.org GnuPG ID: 0x1A7BFEC5 gpg --keyserver pgp.mit.edu --recv-keys 1A7BFEC5 "As you set out for Ithaca, hope the voyage is a long one, full of = adventure, full of discovery [...]" - C. P. Cavafy --Apple-Mail=_EEADD4A2-9CDF-4A03-8A6A-7D855B5E24E9 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP using GPGMail -----BEGIN PGP SIGNATURE----- Comment: Public Key Encryption iQIcBAEBAgAGBQJUvlqFAAoJEPy01a8ae/7FexAP/2B73+TSdkwMHsKdGp7Efn1G p0zzn5wWsQWFU0hCjp/hvp0p/3LyYu8ud1wSIivgLzxJyYjZ0RdTE2u9gOF76uzD fZQ9E52diTziOmksCVkwdHx6IiYPwh7icmnfkrhJuose8CrJeaF2HGXv7a/epe3I H2QZYnuvE/L3ld7EBgf/iiQV2ZW3hdNUCU8qbmU0E9mA54rHSFrxiICIEd2d3yLM 8K26py/zWLJhZoOCVvPMLK+XLB+yjKktRQcQX6NCsQ68S28e+rDPRrC3Aixush8N 1iZ/mlXCwqEhbpQzHdYCXFQdF5ewXcSpjEFdCp9j+Hq/q95IBLPJW7GISO2EhEmh HWiDWi/8Drl+1iaxwu3p8LmsqPeE+JhYfZc6zR8aRnTm0oGVlpcRs1L/ehVUn+t/ VqDi0X+OT3/y6nyakH0bwU6DFfIqxp3rUntODDxqaVuhSDgsWKXyfUimUzmE89U8 05U6cDN5CSFUOMedMXw2CyU7SW8qhdNES7AP3Rc5qdn+ksXHAhuL0RiN6lIb2IAe ro+I5PSWIj5GX+nVAKnSmMlw9opjsF6GK0P9ra2jL7rKtACuB/ia0Rofy8SJsGuR f2liGMCvzYGhHlVUvUy6kqStHjklDhvm/DL+pB+CUI9C+tWZmYUs/NzppionMsP7 fHXdSgxXl4YOSJRHF6vq =GOCw -----END PGP SIGNATURE----- --Apple-Mail=_EEADD4A2-9CDF-4A03-8A6A-7D855B5E24E9--