Messages

1

20.7 Legacy Series / Re: pfatt and 20.7 don't seem to work

« on: August 22, 2020, 11:24:38 pm »

A quick addition: one thing that broke for me recently on reboot was IPS. I was able to get IPS running some time ago, but after a power outage a week ago, my system would no longer maintain connectivity. It would come up just fine, but lose connectivity after a short time (less than a minute). I think that the netmap configuration for IPS somehow conflicts with the netgraph configuration for the bypass. Turning off intrusion detection fixed the problem. I haven't looked for a solution to have both work.

2

20.7 Legacy Series / Re: pfatt and 20.7 don't seem to work

« on: August 22, 2020, 08:30:26 pm »

For what it's worth, I just upgraded to 20.7, and I still seem to be able to get DHCP from ATT using the traditional bypass. I've compared my pfatt.sh to opnatt.sh and they're mostly identical.

I do have a few extra parameters on the ifconfigs to make the interfaces promiscuous, but I wouldn't have thought that they should matter:

Code: [Select]

/sbin/ifconfig $RG_IF promisc -tso4 -tso6 -vlanhwtso
/sbin/ifconfig $ONT_IF promisc -tso4 -tso6 -vlanhwtso

3

20.1 Legacy Series / Re: netgraph change: will https://github.com/aus/pfatt need adjustment?

« on: February 05, 2020, 10:08:23 pm »

99-pfatt.sh already has a line to load ng_etf, so it might make sense to just load all the other modules there too. The script uses -nq so it won't complain if they're already loaded.

Thanks for this thread. I noticed that the script would work if I invoked it by hand, but didn't know what had changed to break it during boot.