> I'm writing a Nagios plugin to verify whether PF is enabled on a
> host, and I'm a bit stumped as to how to do it.
>
> pfctl -d and pfctl -e will tell me if it's already enabled or
> already disabled, but I don't want a setuid or sudo-enabled plugin
> to be manipulating a host's firewall.
I already got the answer off-list... A quick 'pfctl -s info' will
display the status in the first line. I can use sudo and a little
scripting to work out the rest.
I looked at the output of that command several times, but somehow
I managed to miss the very first line. :/
Thanks, everyone!
Benny
--
"I can do for you is - what can not no girl!"
-- Spam email subject, 2010-01-15
