From owner-freebsd-questions@FreeBSD.ORG Mon Feb 9 17:25:09 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 5379ABB for ; Mon, 9 Feb 2015 17:25:09 +0000 (UTC) Received: from mail-ob0-x236.google.com (mail-ob0-x236.google.com [IPv6:2607:f8b0:4003:c01::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1E534D0 for ; Mon, 9 Feb 2015 17:25:09 +0000 (UTC) Received: by mail-ob0-f182.google.com with SMTP id nt9so26041215obb.13 for ; Mon, 09 Feb 2015 09:25:08 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=references:mime-version:in-reply-to:content-type :content-transfer-encoding:message-id:cc:from:subject:date:to; bh=rmLdcyk5HljtyxdtOFJDQYI2lQyqNevKKzI/Yq42RQY=; b=ObRpZc44Q8/ktO88GGH7neme18uBD0KzYI9u5DpxWwSXrnzQO9yUh1ky2Jb7obb+KI tzWayjYdnWQmFEqTPPBS4KfCN1Kl/M3KE48Em+Xn7MiyPBXWcVUc7LRKUcgIF5b/7Gie SRux4w1873jO6thuYJ8NxoI/TnX7NiCWd+DJ6gHBBvY6gNJeJYso5ogqPBUDXc+Fians 6iat911VMliDNv7TQOwFbSY1o+EWvgR9aOQIAn7IGDsK01bbVfcQC5hO2ddGuf3j7Vdg 5UmpSVuEXmceX43W7Nb5H3PmyYDQ5R1G5Zr3C2cqO4tFLc6tbqw/Qb9lQcV13emeFrLs cgRQ== X-Received: by 10.202.194.212 with SMTP id s203mr12010471oif.115.1423502708397; Mon, 09 Feb 2015 09:25:08 -0800 (PST) Received: from [192.168.1.64] (pool-173-57-168-11.dllstx.fios.verizon.net. [173.57.168.11]) by mx.google.com with ESMTPSA id p6sm5588562oib.13.2015.02.09.09.25.06 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 09 Feb 2015 09:25:07 -0800 (PST) References: <44h9uvvwkd.fsf@lowell-desk.lan> Mime-Version: 1.0 (1.0) In-Reply-To: <44h9uvvwkd.fsf@lowell-desk.lan> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Message-Id: X-Mailer: iPad Mail (12B440) From: Matthew Pherigo Subject: Re: /etc/pf.conf missing Date: Mon, 9 Feb 2015 11:25:08 -0600 To: Lowell Gilbert Cc: freebsd-questions , Chris Stankevitz X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Feb 2015 17:25:09 -0000 Yes, it seems to be incorrect there. Instead, it should probably mention the= directory at /usr/share/examples/pf/, which contains a complete sample pf.c= onf, along with some other rulesets for more fringe use cases. --Matt > On Feb 9, 2015, at 11:12 AM, Lowell Gilbert wrote: >=20 > Chris Stankevitz writes: >=20 >> Q: Should I be alarmed? >>=20 >> Handbook section 30.3.1 says "The default ruleset is already created >> and is named /etc/pf.conf" but that file does not exist on my hard >> drive. >=20 > The Handbook (or at least the obvious interpretation of what it says; > the awkward phrasing may mean that it was mis-edited at some point) is > incorrect.=20 >=20 > I'm not sure that a one-size-fits-all default ruleset (of the sort that > exists for ipfw) is practical for pf. >=20 >=20 >=20 > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.or= g"