On Sun, Mar 09, 2003 at 09:18:40AM -0500, G. Roderick Singleton wrote: > On Sun, 2003-03-09 at 08:27, Rene Veerman wrote: > > Hi. > > I am having a little problem with ipf.. It won't filter correctly when i use > > pptp at startup to get internet access. > > > > [snipped] > > > # Allow DNS in from the internet > > pass in quick on tun0 proto tcp from any to any port = 53 keep state > > pass in quick on tun0 proto udp from any to any port = 53 keep state > > > > [snipped] > > From your description, I would guess you are initially blocking DNS or > you are bringing up named before establishing the connection. I'll also > bet that when you reload/restart ipf/ipnat your dns establishes > correctly and all is well. Please check. > I don't know if i'm blocking DNS initially, that should be clear from the ruleset. I am indeed running named before bringing up the connection, but restarting named after booting does not fix the problem. As is clear from the initial description, reloading the ruleset _does_ fix the problem, but i cannot do this from /usr/local/etc/rc.d/ because somehow that brings _down_ the entire connection.
I am still puzzled :( Rene.
