I've made an amazing discovery today. All of my firewalls inside jails are not started!
They work if I manually restart them with
I added rc_debug to jail's rc.conf - looks like pf is not even analyzed.
They work if I manually restart them with
service pf restart
inside jail.
Code:
abishai@artifactory:~ % doas service pf status
/etc/rc.d/pf: DEBUG: checkyesno: pf_enable is set to YES.
/etc/rc.d/pf: DEBUG: run_rc_command: doit: pf_status
Status: Disabled Debug: Urgent