From c0ldbyte@myrealbox.com  Sun Apr  3 22:04:09 2005
Return-Path: <c0ldbyte@myrealbox.com>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9F76016A4CE
	for <freebsd-gnats-submit@freebsd.org>; Sun,  3 Apr 2005 22:04:09 +0000 (GMT)
Received: from mxsf41.cluster1.charter.net (mxsf41.cluster1.charter.net [209.225.28.173])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 41F5543D31
	for <freebsd-gnats-submit@freebsd.org>; Sun,  3 Apr 2005 22:04:09 +0000 (GMT)
	(envelope-from c0ldbyte@myrealbox.com)
Received: from mxip08.cluster1.charter.net (mxip08a.cluster1.charter.net [209.225.28.138])
	by mxsf41.cluster1.charter.net (8.12.11/8.12.11) with ESMTP id j33M48Qc021885
	for <freebsd-gnats-submit@freebsd.org>; Sun, 3 Apr 2005 18:04:08 -0400
Received: from 24.247.253.134.gha.mi.chartermi.net (HELO eleanor.us1.wmi.uvac.net) (24.247.253.134)
  by mxip08.cluster1.charter.net with ESMTP; 03 Apr 2005 18:04:06 -0400
Message-Id: <20050403180217.N1012@eleanor.us1.wmi.uvac.net>
Date: Sun, 3 Apr 2005 18:04:06 -0400 (EDT)
From: c0ldbyte <c0ldbyte@myrealbox.com>
To: FreeBSD-gnats-submit@freebsd.org
Subject: pccard ipf.rules loading problem.

>Number:         79513
>Category:       kern
>Synopsis:       pccard ipf.rules loading problem.
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sun Apr 03 22:10:04 GMT 2005
>Closed-Date:    Mon Jun 06 16:45:28 GMT 2005
>Last-Modified:  Mon Jun 06 16:45:28 GMT 2005
>Originator:     c0ldbyte
>Release:        FreeBSD 4.11-RELEASE-p1 i386
>Organization:
>Environment:
133MHz Intel Celeron / Compaq Armada 4130T / Linksys PCCARD
System: FreeBSD berkeley 4.11-RELEASE-p1 FreeBSD 4.11-RELEASE-p1 #1: Mon 
Mar 28 17:52:58 EST 2005 root@berkeley:/usr/obj/usr/src/sys/BERKELEY i386

>Description:
         Ive started or noticed this problem happening just last year
after I started getting into messing around with ipf. Ive noticed that
when booting up a laptop with a pccard that the ipf.rules arent being
loaded due to them trying to be loaded to early before the interface
comes up which leaves the system open.

>How-To-Repeat:
         plug pccard into a laptop and boot with just ipf built into the
kernel and the default rule of "block out on ed1 all". ipf is set to
default accept in the kernel. And it should boot up without the rules
loaded and leave you to have to manually load the rules yourself.

This has been happening since 4.9-RELEASE that I have noticed personaly.
Happens on 5.2.1-RELEASE - 5.3-RELEASE as well.

>Fix:
         Not sure what a fix would or could be to solve this problem
but would be nice if there was some way to check if the interface is
up and configured before ipf tries to load the rules.

>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: arved 
State-Changed-When: Mon Jun 6 16:44:50 GMT 2005 
State-Changed-Why:  
You can reload ipf.rules from devd.conf (5.x) 

http://www.freebsd.org/cgi/query-pr.cgi?pr=79513 
>Unformatted:
