Re: impossible rc.d ordering problem with stf and pf ?
- From: James Long <stable@xxxxxxxxxxxxxxx>
- Date: Tue, 30 Jan 2007 16:42:34 -0800
Date: Mon, 29 Jan 2007 12:02:52 +0000
From: Pete French <petefrench@xxxxxxxxxxxxxxxx>
Subject: Re: impossible rc.d ordering problem with stf and pf ?
To: freebsd-stable@xxxxxxxxxxx, max@xxxxxxxxxxxxxx
Cc: rcoleman@xxxxxxxxxxxxxxxxx, bms@xxxxxxxxxxx
Message-ID: <E1HBVDo-0008WW-Fe@xxxxxxxxxxxxxxxxxxxxxxxx>
1) You use the interface name as address w/o dynamic lookup.
i.e. "... from stf0 ..."
Yes, thats it - I hadn't come across this 'dynamic lookup' thing before
though, so I didn't realise what it was. I still cant find it in the PF
manual, aside from a reference that you need to do it for NAT.
To 1 and 2 there is a simple sollution: Don't do that then! 1 can easily=20
be defused by adding parentheses. i.e. "... from (stf0) ...".
pass out on (stf0) inet6 from any to any keep state
Just for my edification, what is the point of "keep state" on an
"any-to-any" rule?
Jim
_______________________________________________
freebsd-stable@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: impossible rc.d ordering problem with stf and pf ?
- From: Pete French
- Re: impossible rc.d ordering problem with stf and pf ?
- From: Stefan Lambrev
- Re: impossible rc.d ordering problem with stf and pf ?
- Prev by Date: Re: Intel EM tuning (PT1000 adaptors)
- Next by Date: Filesystem hang on 3ware 6.2 system
- Previous by thread: Re: impossible rc.d ordering problem with stf and pf ?
- Next by thread: Re: impossible rc.d ordering problem with stf and pf ?
- Index(es):
