From c0ldbyte@myrealbox.com Sun Apr 3 22:04:09 2005 Return-Path: Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9F76016A4CE for ; Sun, 3 Apr 2005 22:04:09 +0000 (GMT) Received: from mxsf41.cluster1.charter.net (mxsf41.cluster1.charter.net [209.225.28.173]) by mx1.FreeBSD.org (Postfix) with ESMTP id 41F5543D31 for ; Sun, 3 Apr 2005 22:04:09 +0000 (GMT) (envelope-from c0ldbyte@myrealbox.com) Received: from mxip08.cluster1.charter.net (mxip08a.cluster1.charter.net [209.225.28.138]) by mxsf41.cluster1.charter.net (8.12.11/8.12.11) with ESMTP id j33M48Qc021885 for ; Sun, 3 Apr 2005 18:04:08 -0400 Received: from 24.247.253.134.gha.mi.chartermi.net (HELO eleanor.us1.wmi.uvac.net) (24.247.253.134) by mxip08.cluster1.charter.net with ESMTP; 03 Apr 2005 18:04:06 -0400 Message-Id: <20050403180217.N1012@eleanor.us1.wmi.uvac.net> Date: Sun, 3 Apr 2005 18:04:06 -0400 (EDT) From: c0ldbyte To: FreeBSD-gnats-submit@freebsd.org Subject: pccard ipf.rules loading problem. >Number: 79513 >Category: kern >Synopsis: pccard ipf.rules loading problem. >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-bugs >State: closed >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Sun Apr 03 22:10:04 GMT 2005 >Closed-Date: Mon Jun 06 16:45:28 GMT 2005 >Last-Modified: Mon Jun 06 16:45:28 GMT 2005 >Originator: c0ldbyte >Release: FreeBSD 4.11-RELEASE-p1 i386 >Organization: >Environment: 133MHz Intel Celeron / Compaq Armada 4130T / Linksys PCCARD System: FreeBSD berkeley 4.11-RELEASE-p1 FreeBSD 4.11-RELEASE-p1 #1: Mon Mar 28 17:52:58 EST 2005 root@berkeley:/usr/obj/usr/src/sys/BERKELEY i386 >Description: Ive started or noticed this problem happening just last year after I started getting into messing around with ipf. Ive noticed that when booting up a laptop with a pccard that the ipf.rules arent being loaded due to them trying to be loaded to early before the interface comes up which leaves the system open. >How-To-Repeat: plug pccard into a laptop and boot with just ipf built into the kernel and the default rule of "block out on ed1 all". ipf is set to default accept in the kernel. And it should boot up without the rules loaded and leave you to have to manually load the rules yourself. This has been happening since 4.9-RELEASE that I have noticed personaly. Happens on 5.2.1-RELEASE - 5.3-RELEASE as well. >Fix: Not sure what a fix would or could be to solve this problem but would be nice if there was some way to check if the interface is up and configured before ipf tries to load the rules. >Release-Note: >Audit-Trail: State-Changed-From-To: open->closed State-Changed-By: arved State-Changed-When: Mon Jun 6 16:44:50 GMT 2005 State-Changed-Why: You can reload ipf.rules from devd.conf (5.x) http://www.freebsd.org/cgi/query-pr.cgi?pr=79513 >Unformatted: