I am running pfctl/pf on 10.11.3, having configured /etc/pf.conf - and it appears to run fine. However, certain man pages appear to be missing, and the only man pages I can find is for pflog(4) and pfctl.
there is ... (man pf)
No manual entry for pf
There also appear to be two issues with starting pfctl and pf.
One issue with pfctl and pf is that, according to the pfctl documentation the logging interface pflog0 should be created a;utomatically on pf startup. It's not. You have to create it manually with sudo
ifconfig pflog0 create
which then allows you to read the firewall throughput with
sudo tcpdump -n -e -ttt -i pflog0
Nor does pf start when the system starts. I've had to write a plist to start it at boot time Along with pfctl, which is there in /System/Library/LaunchDaemons
So then it all works fine. But this has led me to think that maybe this part of the system is still a little incomplete.
Has anybody had similar experiences, or am I missing something.
Robert
there is ... (man pf)
No manual entry for pf
There also appear to be two issues with starting pfctl and pf.
One issue with pfctl and pf is that, according to the pfctl documentation the logging interface pflog0 should be created a;utomatically on pf startup. It's not. You have to create it manually with sudo
ifconfig pflog0 create
which then allows you to read the firewall throughput with
sudo tcpdump -n -e -ttt -i pflog0
Nor does pf start when the system starts. I've had to write a plist to start it at boot time Along with pfctl, which is there in /System/Library/LaunchDaemons
So then it all works fine. But this has led me to think that maybe this part of the system is still a little incomplete.
Has anybody had similar experiences, or am I missing something.
Robert