On 2015-07-29, Wong Peter <[email protected]> wrote: > Where to find log files regarding pf rule was flushed out using carp or > pfsync?
pfsync can only sync firewall state tables (pfctl -ss). carp can't change anything to do with PF settings - not rules, not states. There is no mechanism to sync or flush rules without logging in to the machine. If there's an error in your pf.conf file, default rules will be used instead. Run "pfctl -nf /etc/pf.conf" and check for error messages. What are the actual rules that were installed? Show "pfctl -sr" output.
