NetBSD-Users archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

npf auto-interface



Greetings,

I have a box running vlans, net/quagga and openvpn
with npf on NetBSD 8. This setup cause several
problems:

1. Not all interfaces have addresses set up when
npf is starting.
2. Not all interfaces exists when npf is starting,
and it may happen they will not be created soon.

This setup make lot of problems at a boot-time:

1. $int_ip = {inet4($int_if)}; make npf impossible
to load even if int_if exists. This can be solved
with setting IP.
2. Setting IP is a bad idea, because on tun0 it
always can be dynamic.
map tun0 dynamic $acl_local -> 192.168.28.70
3. NAT will not start working when interface tun0
will appear - you have to reload npf explicitly.

Is there any solution for such cases?

--
SY


Home | Main Index | Thread Index | Old Index