Getting tables to work in PF
Patrick Lamaiziere
patfbsd at davenulle.org
Fri Dec 19 11:10:35 UTC 2014
Le Mon, 3 Nov 2014 23:12:52 +0000,
David DeSimone <ddesimone at verio.net> a écrit :
Hello,
> set skip on lo
>
> I'm pretty sure the loopback name should be "lo0" instead of just
> "lo".
Yes and no, the grammar (pf.conf)
set skip on <ifspec>
ifspec = ( [ "!" ] ( interface-name | interface-group ) ) |
"{" interface-list "}"
and lo is a valid interface group. So it should work.
But you are right because "set skip" does not allow interface
groups, this is a bug fixed in recent OpenBSD pf.
Regards,
More information about the freebsd-pf
mailing list