Those two lines we all know and love, ALTQ disabled in kernel, ALTQ functions are disabled. Here's my "problem". I have my own scripting system that managed my pf firewall. It maintains it's own list of "blacklisted" IPs and it manually adds them and removes them from the firewall. It all works well. But due to the nature of how this works, my script is calling `pfctl` a lot. This script's error log gets huge, very quickly. My server hosts a high traffic website. Between flood controls and hacking controls, there are hundreds, sometimes over a thousand IPs in a pf block table at any one time. And they're all getting added and removed by my script running pfctl.
Is there any way I can mute the ALTQ warnings? It is a little (lot) TOO verbose to throw them every single time you run pfctl. And I'd prefer my error logs not be 1 GB in size in a month.
Is there any way I can mute the ALTQ warnings? It is a little (lot) TOO verbose to throw them every single time you run pfctl. And I'd prefer my error logs not be 1 GB in size in a month.