On 2006-07-25 18:53, Ivan Levchenko <[EMAIL PROTECTED]> wrote:
> Hello all,
>
> Is PF installed with the base system in FreeBSD 6.1? I see that there
> is IPF, is it the same thing? I didn't find PF in the ports tree, so
> thats why i'm asking.
Yes, PF is part of the base system in recent FreeBSD releases.
To enable PF support, you can either load it as a module (kldload pf),
or compile it into your custom kernel. The startup scripts of the
system support loading the module, if necessary, so to use PF you can
just enable it in `/etc/rc.conf', i.e. with something like:
pf_rules="/etc/pf.conf"
pf_enable="YES"
pflog_enable="YES"
Then, all you have to do is tune your ruleset in `/etc/pf.conf', and off
you go :)
One tricky point that you should pay attention to is that when PF is
used as a loadable kernel module you cannot use ALTQ for traffic
shaping. To be able to use the ALTQ features, you have to build a
custom kernel that includes both PF and ALTQ options.
HTH,
-- Giorgos
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
