[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

boot order (bringing up interaces and ipf)

To: misc@openbsd.org
Subject: boot order (bringing up interaces and ipf)
From: ryc <ryc@mail.utexas.edu>
Date: Sun, 01 Jul 2001 00:02:48 -0500

I ran into a problem and I am not sure what would be the best way to fix
this (OpenBSD 2.9). My problem is that on bootup ipf has an empty set of
rules besides pass in from any to any.. ect.. My internet interface is
configured via dhcp, and is not static. Some of my firewall rules contain
the interface name in them as such:

block return-rst in log quick on ne0 proto tcp from any to ne0/32 port = X

(where ne0 is the interface configured via dhcp)

The problem is that on boot ipf is loaded before the interfaces are
configured... So ipf pukes when trying to load its rules, and when the box
finishes booting the rules are not active (I dont remember the error message
ipf says, but I will go get it from the terminal if anyone wants it).

I can see why ipf is configured before the interfaces, but doing it this way
screws up my rules.

Is there a better way to to write the rules so ipf will load them without
the interface having an ip address? Should I just reload the rules in
rc.local? Any ideas?

Thanks,
ryan

Next by Date: Re: usenix notes say openssh.com threatened openbsd?
Next by thread: Re: boot order (bringing up interaces and ipf)
Index(es):
- Date
- Thread