"
A quick addition: one thing that broke for me recently on reboot was IPS. I was able to get IPS running some time ago, but after a power outage a week ago, my system would no longer maintain connectivity. It would come up just fine, but lose connectivity after a short time (less than a minute). I think that the netmap configuration for IPS somehow conflicts with the netgraph configuration for the bypass. Turning off intrusion detection fixed the problem. I haven't looked for a solution to have both work.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
20.7 Legacy Series / Re: pfatt and 20.7 don't seem to work
August 22, 2020, 08:30:26 PM
For what it's worth, I just upgraded to 20.7, and I still seem to be able to get DHCP from ATT using the traditional bypass. I've compared my pfatt.sh to opnatt.sh and they're mostly identical.
I do have a few extra parameters on the ifconfigs to make the interfaces promiscuous, but I wouldn't have thought that they should matter:
I do have a few extra parameters on the ifconfigs to make the interfaces promiscuous, but I wouldn't have thought that they should matter:
Code Select
/sbin/ifconfig $RG_IF promisc -tso4 -tso6 -vlanhwtso
/sbin/ifconfig $ONT_IF promisc -tso4 -tso6 -vlanhwtso #3
20.1 Legacy Series / Re: netgraph change: will https://github.com/aus/pfatt need adjustment?
February 05, 2020, 10:08:23 PM
99-pfatt.sh already has a line to load ng_etf, so it might make sense to just load all the other modules there too. The script uses -nq so it won't complain if they're already loaded.
Thanks for this thread. I noticed that the script would work if I invoked it by hand, but didn't know what had changed to break it during boot.
Thanks for this thread. I noticed that the script would work if I invoked it by hand, but didn't know what had changed to break it during boot.
Pages1
