Hi all,
In my /etc/rc.conf I launch several instances of security/openvpn at startup.
For some reason, a vpn session can then be initiated by a client, but no traffic is passed through until I manually reload the PF rule set by running
Just a wild guess, but I am thinking that at boot time maybe PF can't yet see the tun interfaces as defined and ignores these lines:
I tried putting the openvpn startup commands above the invocation of PF in /etc/rc.conf, but that has no effect.
Any ideas on how to fix this?
In my /etc/rc.conf I launch several instances of security/openvpn at startup.
For some reason, a vpn session can then be initiated by a client, but no traffic is passed through until I manually reload the PF rule set by running
pfctl -vf /etc/pf.conf
.Just a wild guess, but I am thinking that at boot time maybe PF can't yet see the tun interfaces as defined and ignores these lines:
Code:
vpn0_if = "tun0"
vpn1_if = "tun1"
vpn2_if = "tun2"
[...]
pass out quick on $vpn0_if inet keep state
pass out quick on $vpn1_if inet keep state
pass out quick on $vpn2_if inet keep state
Any ideas on how to fix this?