On Mon, 26 Feb 2006, [EMAIL PROTECTED] wrote: > PF sqawcks if a hostname in any of it's files are not currently > findable. Is there a reasonable way to have it gracefully skip missing > hosts and carry on?
So you firewall rules can be silently skipped during times of DNS outage or DoS? That doesn't sound like a very good idea. A better idea is creating your rules with tables in place of DNS names, and regularly updating the tables with the DNS names (e.g. out of cron). -d
