I do something similar to this: pfctl -t local-white -T replace -f /path/to/whitelist
Where local-white is my whitelist, and /path/to/whitelist is the file containing whitelisted IP addresses or CIDRs, one per line. On 10/31/06, Steve Williams <[EMAIL PROTECTED]> wrote:
Hi, I have a table of "whitelisted" hosts that I can change on the fly as I see email coming in that gets greylisted. I add an entry to the file, then I try to reload the table. pfctl -t local-white -T load -f /etc/pf.conf Magically, pf seems to block most local access. ie: telnet localhost 25 times out, telnet localhost 3306 times out.. If I use a sledge hammer: pfctl -Fa -f /etc/pf.conf The system resumes "normal" activity. My relevant entry in the pf.conf is: table <local-white> persist file "/etc/spamd/whitelist.txt" rdr on $ext_if proto tcp from <local-white> to any port smtp -> $int_mcafe_webshield Is there a "proper" way to update a pf table that resides in a file? Thanks, Steve Williams
-- Joel Goguen Bachelor of Computer Science III University of New Brunswick http://iapetus.dyndns.org/
