From owner-freebsd-pf@FreeBSD.ORG Sat May 5 23:55:49 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5D54416A401 for ; Sat, 5 May 2007 23:55:49 +0000 (UTC) (envelope-from kian.mohageri@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.239]) by mx1.freebsd.org (Postfix) with ESMTP id 1C29113C44C for ; Sat, 5 May 2007 23:55:49 +0000 (UTC) (envelope-from kian.mohageri@gmail.com) Received: by nz-out-0506.google.com with SMTP id s1so1269680nze for ; Sat, 05 May 2007 16:55:48 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding; b=WXFlwUJHn1k4fquH01Naz2Oe9VswnzPBszCWsMzB2zjj2bIGIT/uFTvWcgLy++tXkZ+t7mYbIRXsjpAZ6KtPX4eb4GjdkmI7b/0/YEVNc+I7/8iTCj60L+YmR/ilj6lFFPHo+0vi05BIjBaLoKE/HlR79LUt+Mc40tjfrDps0zI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding; b=a0pcvG8gLxwUHIRpHRvESOkYK5N9siCBgK6TljXrl9FPE0C4kixSBxvp2o33drC3pSzpPnvpIsMaxiju/topRkohcyzN2E+EvySAQjWqbetOF+o3DKtDIXGUm3j9+77sxnL4Nbm1PMCSq7DaMmOkBRHGCwrbj7CCMC3ArcO0/do= Received: by 10.115.16.1 with SMTP id t1mr1615269wai.1178407623546; Sat, 05 May 2007 16:27:03 -0700 (PDT) Received: from ?10.1.1.51? ( [71.227.220.29]) by mx.google.com with ESMTP id q20sm6091324pog.2007.05.05.16.27.02; Sat, 05 May 2007 16:27:02 -0700 (PDT) Message-ID: <463D12DC.7000205@gmail.com> Date: Sat, 05 May 2007 16:27:24 -0700 From: Kian Mohageri User-Agent: Thunderbird 2.0.0.0 (Windows/20070326) MIME-Version: 1.0 To: freebsd-pf@FreeBSD.org References: <20070505224853.B826EB867@shodan.nognu.de> In-Reply-To: <20070505224853.B826EB867@shodan.nognu.de> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: Subject: Re: PF not started on boot (though it's in /etc/rc.conf) X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 05 May 2007 23:55:49 -0000 Frank Steinborn wrote: > Hi pf-users, > > I have a problem bringing up PF after a reboot of my 6.2 machine. > I tried pf_enable="YES" in /etc/rc.conf, but it doesn't seem to > get executed. /etc/rc.d/pf exists, also tried to declare pf_rules and > even pf_program without luck. I always have to do "pfctl -e -f > /etc/pf.conf" manually after the boot. > > Any hints on that? > I'm guessing you used a hostname in your ruleset, which currently results in the behavior you've described (on FreeBSD) because at the time pf comes up, DNS isn't working. -Kian