The interface needs to be in an "up" state for the kernel to be willing to
even look at the packets the interface driver is saying are available for
processing. I'm not sure if an IP address needs to be configured for it
on OpenBSD or if it needs an address on the segment it's plugged into,
quite a bit has changed in the networking options since the last time I
did this kind of thing with ether a *BSD or Linux box.
My memory of using ipfilter on *BSD vs. iptables is that ipfilter (and I
assume pf's the same) is that it processes all packets as they come out of
or go into the IP stack, where as with iptables they're grabbed if there
is a routing decision to be made on the packet (though the decision is
can still be limited on a per interface basis. I'm definately
oversimplifying here, and probably completely off base).
On Thu, 19 Jun 2003, Andrew M Hoerter wrote:
>
> On Thu, 19 Jun 2003, Joe O wrote:
>
> > Eh... for the openbsd needing the interface configured with a particualr
> > IP address, man "arp" and look at the pub option.
>
> That might work, I haven't tried it. Will an interface respond to ARP
> queries if it's not configured at all?
>
> My information came from Daniel Hartmeier (author of pf) as of summer last
> year.
>
>
>
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 17:05:47 EDT