Subject: Re: pf's rc.d script & startup priority
To: None <tech-security@NetBSD.org>
From: Luke Mewburn <lukem@NetBSD.org>
Date: 08/08/2005 10:27:10
Content-Type: text/plain; charset=us-ascii
On Mon, Aug 08, 2005 at 02:14:01AM +0200, Peter Postma wrote:
| > Does rc.d/pf rely upon /usr as part of its startup?
| > I don't think it does, unless pfspamd [from pkgsrc?]
| > or other /usr-located programs are needed by pf.
| Yes, if used as LKM. But if we start it after the LKMs then it should be
That could introduce a weird dependency ordering;
this will probably only work if pf is a BEFORENET lkm
(in lkm.conf) which means that /usr needs to be available=20
for this to work.
Testing this theory will be required.
| I've tried the REQUIRE line from the ipfilter script in the pf script b=
| still gets ordered too late. Do you have a suggestion?
That's because rc.d/network REQUIREs ipfilter.
You could try
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (NetBSD)
-----END PGP SIGNATURE-----