automatic tables / self statement in pf.conf
mike tancsa
mike at sentex.net
Mon Jan 20 17:10:57 UTC 2020
On 1/20/2020 10:16 AM, Patrick Lamaiziere wrote:
> What would trigger the table name to change like that ?
> I think that names of automatic tables are more or less random. I've
> got two firewalls using the same ruleset (pf.conf) and the name
> of the automatic table for self is not the same on both.
>
> I thing a simple pfctl -f will change the name.
Yes, looks like it.
>> Also, is there a better way to monitor pf rule changes ? I dont see
>> any mention in FreeBSD audit ?
> I don't know, may be the checksum changes when the ruleset changes ?
it does, but if someone added a rule and then removed it, the checksum
would be the same it seems and there would be no record of the addition
and deletion of the rule
---Mike
>
> # pfctl -vvvv -si
> No ALTQ support in kernel
> ALTQ related functions disabled
> Status: Enabled for 11 days 05:32:26 Debug: Urgent
>
> Hostid: 0x19478aad
> ===> Checksum: 0x964f5ae9bc221aa840ba7323cb649e32
>
> Interface Stats for all IPv4 IPv6
> ...
>
> Regards,
>
>
More information about the freebsd-pf
mailing list