Man page or keyword search:   man All Sections 1 - General Commands 2 - System Calls 3 - Subroutines, Functions 4 - Special Files 5 - File Formats 6 - Games and Screensavers 7 - Macros and Conventions 8 - Maintenence Commands 9 - Kernel Interface New Commands Server 4.4BSD AIX Alpinelinux Archlinux Aros BSDOS BSDi Bifrost CentOS Cygwin Darwin Debian DigitalUNIX DragonFly ElementaryOS Fedora FreeBSD Gentoo GhostBSD HP-UX Haiku Hurd IRIX Inferno JazzOS Kali Knoppix LinuxMint MacOSX Mageia Mandriva Manjaro Minix MirBSD NeXTSTEP NetBSD OPENSTEP OSF1 OpenBSD OpenDarwin OpenIndiana OpenMandriva OpenServer OpenSuSE OpenVMS Oracle PC-BSD Peanut Pidora Plan9 QNX Raspbian RedHat Scientific Slackware SmartOS Solaris SuSE SunOS Syllable Tru64 UNIXv7 Ubuntu Ultrix UnixWare Xenix YellowDog aLinux   9087 pages apropos Keyword Search (all sections) Output format html ascii pdf view pdf save postscript

PF.BOOT.CONF(5)		    BSD File Formats Manual	       PF.BOOT.CONF(5)

NAME
     pf.boot.conf — initial configuration for packet filter

DESCRIPTION
     The pf.boot.conf file is used as initial configuration for the pf(4)
     packet filter.  This file is loaded before the network is configured by
     the rc.d(8) script network.  Its purpose is to protect the machine from
     possible attacks between the network configuration and the loading of the
     final ruleset.

     The syntax of this file is described in pf.conf(5).

     Note that at the stage the configuration is loaded, the network inter‐
     face(s) do not have an IP address yet, so you cannot use rules that
     derive addresses from an interface (for example: “pass out from any to
     fxp0”).

FILES
     /etc/defaults/pf.boot.conf	 Default initial ruleset file.
     /etc/pf.boot.conf		 Override of the default initial ruleset file.

EXAMPLES
     When using NFS (e.g. diskless situations), you'll also need the following
     rules in addition to the default rules to unblock NFS:

	   scrub in all no-df
	   pass in proto udp from any port { 111, 2049 } to any
	   pass out proto udp from any to any port { 111, 2049 }

SEE ALSO
     pf(4), pf.conf(5), pfctl(8)

BSD				August 17, 2005				   BSD

                             _         _         _ 
                            | |       | |       | |     
                            | |       | |       | |     
                         __ | | __ __ | | __ __ | | __  
                         \ \| |/ / \ \| |/ / \ \| |/ /  
                          \ \ / /   \ \ / /   \ \ / /   
                           \   /     \   /     \   /    
                            \_/       \_/       \_/ 

Vote for polarhome