From owner-freebsd-pf@FreeBSD.ORG  Tue Dec  9 14:53:10 2008
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C1D0E1065672
	for <freebsd-pf@freebsd.org>; Tue,  9 Dec 2008 14:53:10 +0000 (UTC)
	(envelope-from leslie@eskk.nu)
Received: from hawk.thalamus.net (hawk.thalamus.net [212.31.160.3])
	by mx1.freebsd.org (Postfix) with ESMTP id 821E28FC1B
	for <freebsd-pf@freebsd.org>; Tue,  9 Dec 2008 14:53:10 +0000 (UTC)
	(envelope-from leslie@eskk.nu)
Received: from localhost (localhost.thalamus.net [127.0.0.1])
	by hawk.thalamus.net (Postfix) with ESMTP id 486881EE91B
	for <freebsd-pf@freebsd.org>; Tue,  9 Dec 2008 15:41:00 +0100 (CET)
X-Virus-Scanned: by amavisd-new at thalamus.net
X-Spam-Flag: NO
X-Spam-Score: 2.449
X-Spam-Level: **
X-Spam-Status: No, score=2.449 tagged_above=-999 required=4.2
	tests=[AWL=-0.720, HELO_LH_HOME=3.169]
Received: from hawk.thalamus.net ([127.0.0.1])
	by localhost (hawk.thalamus.net [127.0.0.1]) (amavisd-new, port 10024)
	with LMTP id Mblc3UThe3pf for <freebsd-pf@freebsd.org>;
	Tue,  9 Dec 2008 15:40:50 +0100 (CET)
Received: from bljbsd01.homenet.home (c-195-216-040-164.static.bjare.net
	[195.216.40.164])
	by hawk.thalamus.net (Postfix) with ESMTP id 4548C1EE94F
	for <freebsd-pf@freebsd.org>; Tue,  9 Dec 2008 15:37:31 +0100 (CET)
Message-ID: <493E82B3.5090002@eskk.nu>
Date: Tue, 09 Dec 2008 15:37:39 +0100
From: Leslie Jensen <leslie@eskk.nu>
User-Agent: Thunderbird 2.0.0.18 (X11/20081125)
MIME-Version: 1.0
To: freebsd-pf@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Personal firewall with two interfaces
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Dec 2008 14:53:10 -0000

Hello

I'm running pf as my personal firewall on my laptop.

I've got one ethernet and one wifi interface, both are configured during 
boot.

I usually make a change pf.conf where I change

# ext_if="em0"
ext_if="rum0"

or vice versa.

My problem is that if the "wrong" interface is active in pf.conf 
there'll be some waiting for ntpd sshd and bsdstats to time out.

I would like to configure pf so that both interfaces are treathed the 
same, only one active interface at the time, but to remove the need for 
a manual change of pf.conf at startup.

Any hints are appreciated.

Thank you

/Leslie