On Mon, Aug 25, 2025 at 05:45:23PM +0000, Lloyd wrote: > If I have a pf table defined as follows: > > table <spam> persist file "/etc/spammers" > > and I add/remove IP addresses from that file, do you have to run pfctl to > refresh the table in memory?
yes. something along the lines of $ doas pfctl -t spam -vT replace -f /etc/spammers then again, if the table is updated in any other way than by loading that file, it would be wise to dump current contents to a file (something like $ doas pfctl -t spamd -T show | tee temporary-filen followed by editing temporary-file, loading the result etc) -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team https://nxdomain.no/~peter/blogposts https://nostarch.com/book-of-pf-4th-edition "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
