Take a look in /etc/defaults/rc.conf The bits for PF are already there. All you should need is to set pf_enable="YES" A quick guess would be that that /etc/defaults/rc.conf is loaded after /etc/rc.conf, and pf_enable is reset to NO, but that is just a guess.
Here is my pf section from /etc/defaults/rc.conf that brings pf up on boot: <snip> pf_enable="YES" # Set to YES to enable packet filter (pf) pf_rules="/etc/pf.conf" # rules definition file for pf pf_program="/sbin/pfctl" # where the pfctl program lives pf_flags="" # additional flags for pfctl pflog_enable="YES" # Set to YES to enable packet filter logging pflog_logfile="/var/log/pflog" # where pflogd should store the logfile pflog_program="/sbin/pflogd" # where the pflogd program lives pflog_flags="" # additional flags for pflogd <snip> On Wed, May 14, 2008 at 5:24 AM, RW <[EMAIL PROTECTED]> wrote: > On Wed, 14 May 2008 09:24:52 +0800 > "CyberSans AirBort" <[EMAIL PROTECTED]> wrote: > >> and guess what? pf is not loading when startup. i have to manually >> restarted the pf using /etc/rc.d/pf restart > > What exactly do you mean by "not loading"? Do you mean not working? > > Are there any pf related error messages in /var/log/messages. > > In some case pf does need a /etc/rc.d/pf resync (or restart) done > at a later stage. e.g if pf.conf uses hostnames that can't be resolved > at that stage of the boot. > > _______________________________________________ > email@example.com mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "[EMAIL PROTECTED]" > _______________________________________________ firstname.lastname@example.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"