Joel Goguen wrote:
I do something similar to this:
pfctl -t local-white -T replace -f /path/to/whitelist
Where local-white is my whitelist, and /path/to/whitelist is the file
containing whitelisted IP addresses or CIDRs, one per line.
On 10/31/06, Steve Williams <[EMAIL PROTECTED]> wrote:
Hi,
I have a table of "whitelisted" hosts that I can change on the fly as I
see email coming in that gets greylisted. I add an entry to the file,
then I try to reload the table.
pfctl -t local-white -T load -f /etc/pf.conf
Magically, pf seems to block most local access. ie: telnet localhost
25 times out, telnet localhost 3306 times out..
If I use a sledge hammer:
pfctl -Fa -f /etc/pf.conf
The system resumes "normal" activity.
My relevant entry in the pf.conf is:
table <local-white> persist file "/etc/spamd/whitelist.txt"
rdr on $ext_if proto tcp from <local-white> to any port smtp ->
$int_mcafe_webshield
Is there a "proper" way to update a pf table that resides in a file?
Thanks,
Steve Williams
Thanks! Works for me too! :-)