7 # REQUIRE: FILESYSTEMS netif pflog pfsync
20 reload_cmd="pf_reload"
21 resync_cmd="pf_resync"
22 status_cmd="pf_status"
23 extra_commands="check reload resync"
24 required_files="$pf_rules"
29 check_startmsgs && echo -n 'Enabling pf'
30 $pf_program -F all > /dev/null 2>&1
31 $pf_program -f "$pf_rules" $pf_flags
32 if ! $pf_program -s info | grep -q "Enabled" ; then
35 check_startmsgs && echo '.'
40 if $pf_program -s info | grep -q "Enabled" ; then
41 echo -n 'Disabling pf'
49 echo "Checking pf rules."
50 $pf_program -n -f "$pf_rules"
55 echo "Reloading pf rules."
56 $pf_program -n -f "$pf_rules" || return 1
57 # Flush everything but existing state entries that way when
58 # rules are read in, it doesn't break established connections.
59 $pf_program -Fnat -Fqueue -Frules -FSources -Finfo -FTables -Fosfp > /dev/null 2>&1
60 $pf_program -f "$pf_rules" $pf_flags
65 $pf_program -f "$pf_rules" $pf_flags
70 if ! [ -c /dev/pf ] ; then
71 echo "pf.ko is not loaded"