>> pfctl(8) silently ignores nonexisting table and queue names.
>>I suppose, it is some kind of feature (like dynamic creation,
>>or so),
CB> Yes, that's a feature: the table can be created later by some daemon
CB> like spamd.
..
CB> ... so you can easily spot empty table: pfctl -vvsr | grep ':0>'
hmm, looks like, pfctl -vvsr | grep ':\*>'
> crater[3.7]# pfctl -vvsr | grep ':\*>'
> @0 pass in from <nx_table:*> to any
.. What about ALTQ queue names (mistyped on filter rules) ?
for example:
> crater[3.7]# pfctl -sq
> queue root_rl0 bandwidth 100Mb priority 0 cbq( wrr root ) {def, sandbox}
> queue def bandwidth 70Mb cbq( borrow default )
> queue sandbox bandwidth 2Mb cbq( red )
> crater[3.7]# pfctl -vvsr
> @0 pass in from <nx_table:*> to any
> [ Evaluations: 189 Packets: 0 Bytes: 0 States: 0
> ]
> @1 pass in from (rl0:2) to any queue sendbox
^^^^^^^
mistyped name
> [ Evaluations: 121 Packets: 0 Bytes: 0 States: 0
> ]
