Re: dis/advantages of compiling in-kernel over kldload

Reply: void : "Re: dis/advantages of compiling in-kernel over kldload"
In reply to: void : "Re: dis/advantages of compiling in-kernel over kldload"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Warner Losh <imp_at_bsdimp.com>
Date: Wed, 12 Jul 2023 18:04:21 UTC

On Wed, Jul 12, 2023 at 11:58 AM void <void@f-m.fm> wrote:

> Hi Warren,
>
> On Wed, Jul 12, 2023 at 11:53:32AM -0600, Warner Losh wrote:
>
> >Yes. pf_enable=YES will load it as a side effect when it configures
> >pf, but isn't primarily to load it as a module. But if it's in the kernel,
> >you still need to configure pf on boot (or some time later).
>
> But if pf is already configured in /etc/pf.conf, is pf_enable=YES still
> required in /etc/rc.conf ?
>

Yes. /etc/rc.d/pf doesn't check /etc/pf.conf. Its pf_start() routine will
only
run if pf_enable=YES in /etc/rc.conf (or related file, which pf.conf is not)

Warner