Jonathan S. Keim wrote:
Hello all,
Is it correct to say that after calling DIOCCOMMITRULES on a file
descriptor for /dev/pf that the descriptor becomes invalid for further
ioctl(2) rule operations?
No.
In particular, should I have to re-open /dev/pf after committing a
ruleset? If I do not, all my DIOCBEGINRULES ioctl(2)s fail with EBADF
or EOPNOTSUPP.
That's strange. Which version?
BTW: DIOCCOMMITRULES will soon disappear in -CURRENT...
It's already gone from the manpage... Use DIOCXCOMMIT.
Cedric
