Hello,
I'm not able to comment on route changes when interface
address changes or when interface comes up/down.
I'm able to provide hints on pf(4) part.
On Wed, Jan 03, 2024 at 11:21:38PM +0300, Alexander Okonnikov wrote:
</snip>
> According to pf.conf man:
>
> "When the interface name is surrounded by parentheses, the rule is
> automatically updated whenever the interface changes its address. The
> ruleset does not need to be reloaded. This is especially useful with NAT."
>
yes this is true. you can list IP addresses used by '(vio0)' expression
in your rules using pfctl(8) command:
pfctl -a _pf -t vio0 -T show
I believe every change to vio0 propagates to vio0@_pf table.
just use pfctl(8) to watch for those changes.
also keep in mind existing sessions keep using old IP address.
only the new sessions will get the new address just assigned to
interface.
hope it helps
regards
sashan
