[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

When should pf reload (if:network) rules?

To: misc@openbsd.org
Subject: When should pf reload (if:network) rules?
From: Sitsofe Wheeler <sitsofe@gmail.com>
Date: Fri, 24 Sep 2004 22:53:13 +0100

Hello,

At the moment pf on OpenBSD 3.5 does a great job of automatically
reloading parenthesised interface rules when an address of that
interface changes and this works well. However I have the following
rule:

pass out quick on $int_if from any to ($int_if:network)

When pf is loaded this rule matches the interface's initial set of
network addresses. However, after pf is running an ipv6 alias is added
to the $int_if interface but despite being in parenthesis the rule is
not reloaded. I'm wondering whether (:network) should cause a rule
reload when an interface's alias list changes...

-- 
Sitsofe | http://sucs.org/~sits/

Follow-Ups:
- Re: When should pf reload (if:network) rules?
  - From: Cedric Berger <cedric@berger.to>

Prev by Date: 은행보다 낮은 이율,친절상담!5천만원까지!승인율99%!!
Next by Date: 헛개나무기획이벤트 신청하신모든분들께 무료증정! sganf rjg
Prev by thread: Squid header-access alteration
Next by thread: Re: When should pf reload (if:network) rules?
Index(es):
- Date
- Thread