[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pfctl question

To: misc@openbsd.org
Subject: Re: pfctl question
From: Henning Brauer <lists-openbsd@bsws.de>
Date: Thu, 27 Jun 2002 11:41:25 +0200
Content-Disposition: inline
Mail-Followup-To: misc@openbsd.org
References: <Pine.SOL.4.10.10206271151050.29449-100000@imsp234.hkstar.com>

On Thu, Jun 27, 2002 at 11:57:58AM +0800, Clarence wrote: 
> I updated my system (openbsd-current) with source upto yesterday without
> any error (both the make kernel and make build).  However, I found out the
> pfctl (new one) without the -l option which is important for me to do nat.
> The machines in my lan cannot reach the outside.  After seraching the
> email for the last week and the man pfctl, I didn't found out any answer
> concerning the solution to my problem.  man pftcl, the -l option is there
> but when I try pfctl -h the -l option is not provide.  Can anyone show the
> direction to solve my problem.  Thanks.

-l is important for NAT??? -l sets the log interface.

pfctl has undergone a lot of changes. nat.conf and pf.conf are merged now,
all is in pf.conf now. pfctl -N and -R are dead, use -f instead. (-R and -N
have another purpose now, see pfctl(8)).
pfctl's options -l, -O, -t and -m are dead. they are superseeded by
 set loginterface <if>
 set optimization <modifier>
 set timeout <timeout> <value>
 set limit <limit> <value>
in pf.conf nowadays.

References:
- pfctl question
  - From: Clarence <c5666305@hkstar.com>

Prev by Date: Urgent! PPP inconsistency - 3.1
Next by Date: Another SSH Problem
Prev by thread: Re: pfctl question
Next by thread: Re: pfctl question
Index(es):
- Date
- Thread