On Wed, Jul 13, 2005 at 01:59:33PM +0200, Michal Stepien wrote:
> I would like to apologize for my spam.
> It seems that ipf do not create ,,valid'' rules
> for interfaces which do not yet exist.
> So if someone use eg. "block in on tun0 from any to any"
> and tun0 does not exist such rule does not work.
> 
> This is why restarting of ipfilter and ipnat was necessary.

Ha, in this case
ipf -y
may be enouth.

-- 
Manuel Bouyer <bouyer@antioche.eu.org>
     NetBSD: 26 ans d'experience feront toujours la difference
--