Leonardo Carneiro - Veltrac <[email protected]> writes: > If I add or remove IPs from this file mannualy, will the firewall be > aware of such changes or do i need to reload pf?
You can check what actually happens easily after editing the file by comparing the output of $ sudo pfctl -t ips_allowed -T show with the contents of the file, but the shorter answer is: No. You will need to reload table contents, with a command like $ sudo pfctl -t ips_allowed -T replace -f /etc/pf.conf.d/ips_allowed > Also, pf do map this file in memory or does it read from the disk > for every packet? Tables sourced from files are held in memory, and rule set evaluation in most cases is not triggered as long as an arriving packet matches a pre-existing state. My own take on basic table operations are up at http://home.nuug.no/~peter/pf/en/tables.html, the PF User Guide (aka The PF FAQ) has a tables section at http://www.openbsd.org/faq/pf/tables.html (and your friendly neighborhood mirror) - Peter -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
