From owner-freebsd-pf@FreeBSD.ORG Sat Feb 12 04:29:49 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6B9C516A4CE for ; Sat, 12 Feb 2005 04:29:49 +0000 (GMT) Received: from mgr2.xmission.com (mgr2.xmission.com [198.60.22.202]) by mx1.FreeBSD.org (Postfix) with ESMTP id 10B0F43D1F for ; Sat, 12 Feb 2005 04:29:49 +0000 (GMT) (envelope-from acc@anthonychavez.org) Received: from [198.60.22.206] (helo=mgr6.xmission.com) by mgr2.xmission.com with esmtp (Exim 4.34) id 1Czoui-00051e-Si for freebsd-pf@freebsd.org; Fri, 11 Feb 2005 21:29:48 -0700 Received: from [166.70.126.66] (helo=mail.anthonychavez.org) by mgr6.xmission.com with esmtp (Exim 4.34) id 1Czoui-0005w4-JY for freebsd-pf@freebsd.org; Fri, 11 Feb 2005 21:29:48 -0700 Received: from localhost (localhost [127.0.0.1]) by mail.anthonychavez.org (Postfix) with ESMTP id B5EF4A6 for ; Fri, 11 Feb 2005 21:29:47 -0700 (MST) Received: from mail.anthonychavez.org ([127.0.0.1]) by localhost (mail.anthonychavez.org [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 83688-03 for ; Fri, 11 Feb 2005 21:29:38 -0700 (MST) Received: from pegasos.local (pegasos.anthonychavez.org [192.168.133.6]) by mail.anthonychavez.org (Postfix) with ESMTP id 6751D3E for ; Fri, 11 Feb 2005 21:29:38 -0700 (MST) To: freebsd-pf@freebsd.org X-PGP-Key: http://anthonychavez.org/pubkey.asc From: Anthony Chavez Date: Fri, 11 Feb 2005 21:29:32 -0700 Message-ID: User-Agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3.50 (darwin) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Virus-Scanned: amavisd-new at anthonychavez.org Received-SPF: none (mgr6.xmission.com: 166.70.126.66 is neither permitted nor denied by domain of anthonychavez.org) client-ip=166.70.126.66; envelope-from=acc@anthonychavez.org; helo=mail.anthonychavez.org; X-Spam-Checker-Version: SpamAssassin 3.0.2 (2004-11-16) on mgr6.xmission.com X-Spam-Level: X-Spam-Status: No, score=-0.9 required=8.0 tests=BAYES_00,FVGT_m_MULTI_ODD, XMLngstWrd_00,XMLngstWrd_01 autolearn=disabled version=3.0.2 X-SA-Exim-Connect-IP: 166.70.126.66 X-SA-Exim-Mail-From: acc@anthonychavez.org X-SA-Exim-Version: 4.2 (built Tue, 25 Jan 2005 19:36:50 +0100) X-SA-Exim-Scanned: Yes (on mgr6.xmission.com) Subject: pf + kldload X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 Feb 2005 04:29:49 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, all. When enabling pf on a 5.3-RELENG-p2 box, I simply attempted to load the kernel module using kldload and loaded a default-deny ruleset using pfctl. kldstat shows that the module has in fact loaded. However, pfctl shows that no packet evaulations are being performed and thus, no packets are being dropped. This particular machine has a significant amount of uptime, so I'd like to avoid rebooting it if possible, but is that the only course of action that I can take at this point? If not, what am I missing? Thanks! - -- Anthony Chavez http://anthonychavez.org/ mailto:acc@anthonychavez.org jabber:acc@jabber.anthonychavez.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (Darwin) iD8DBQFCDYYvbZTbIaRBRXERArpDAJ9vhClecI220UFzsF21qfk63aZcjwCfXKU3 6SQ/V6PRUpCahXNliMywkF0= =4BSk -----END PGP SIGNATURE-----