On Sat, Jul 29, 2006 at 10:56:03PM -0400, jared r r spiegel wrote:
> On Fri, Jul 28, 2006 at 12:49:32PM -0700, andrew fresh wrote:
> > The problem I am seeing is that there are 2 interfaces in the "wild"
> > group. If you look at the output below, you will see that in the first
> > conf file the 192.168.206.0 address is in the output, but in the second
> > one, the adddress is not there.
>
> this seems like duplicating it. the last 'group' gets all its IPs,
> the earlier groups only get the first (?) iface:
[snip]
> OpenBSD 4.0-beta (GENERIC) #1026: Wed Jul 26 20:35:18 MDT 2006
even in -current, I didn't get a chance to install a box to test that.
> maybe in the meantime it would work if you put the iface in
> parens? it's a guess, but perhaps then it would be up to pf
> to act how you imagine it ought to, instead of pfctl.
In the mean time, I changed my pf.conf to have
pass on wild ...
pass on internal ...
Extra lines instead of using a list. Not nearly as pretty, but it works
for now.
l8rZ,
--
andrew - ICQ# 253198 - JID: [EMAIL PROTECTED]
BOFH excuse of the day: CPU-angle has to be adjusted because of
vibrations coming from the nearby road
