From grant@bloodlet.net  Thu Sep 11 12:34:07 2003
Return-Path: <grant@bloodlet.net>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 061C216A4BF
	for <FreeBSD-gnats-submit@freebsd.org>; Thu, 11 Sep 2003 12:34:07 -0700 (PDT)
Received: from bloodlet.net (bdsl.66.14.202.7.gte.net [66.14.202.7])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8E74143FF3
	for <FreeBSD-gnats-submit@freebsd.org>; Thu, 11 Sep 2003 12:34:05 -0700 (PDT)
	(envelope-from grant@bloodlet.net)
Received: from bloodlet.net (localhost [127.0.0.1])
	by bloodlet.net (8.12.9/8.12.9) with ESMTP id h8BJXWbQ001077
	for <FreeBSD-gnats-submit@freebsd.org>; Thu, 11 Sep 2003 14:33:32 -0500 (CDT)
	(envelope-from grant@bloodlet.net)
Received: (from grant@localhost)
	by bloodlet.net (8.12.9/8.12.9/Submit) id h8BJXVvY001076;
	Thu, 11 Sep 2003 14:33:31 -0500 (CDT)
Message-Id: <200309111933.h8BJXVvY001076@bloodlet.net>
Date: Thu, 11 Sep 2003 14:33:31 -0500 (CDT)
From: grant beattie <grant@NetBSD.org>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: ipmon starts too early and exits immediately
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         56715
>Category:       misc
>Synopsis:       ipmon starts too early and exits immediately
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    darrenr
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Sep 11 12:40:14 PDT 2003
>Closed-Date:    Tue Apr 20 06:31:05 PDT 2004
>Last-Modified:  Tue Apr 20 06:31:05 PDT 2004
>Originator:     grant beattie
>Release:        FreeBSD 5.1-RELEASE i386
>Organization:
>Environment:
System: FreeBSD bloodlet.net 5.1-RELEASE FreeBSD 5.1-RELEASE #0: Thu Sep 4 20:42:03 CDT 2003 root@elvar.org:/usr/obj/usr/src/sys/firewall i386

>Description:
ipmon does not start correctly on bootup when it is enabled, since it
is started prior to ipfilter being initialized.

>How-To-Repeat:
echo ipfilter_enable=YES >> /etc/rc.conf
echo ipmon_enable=YES >> /etc/rc.conf

note that ipmon exits after starting because ipfilter hasn't been
initialized.
>Fix:
start ipmon after initializing ipfilter. while this does introduce a
period of time between starting ipfilter and ipmon where log entries
may be lost, it is better than losing all log entries.

Index: ipmon
===================================================================
RCS file: /home/ncvs/src/etc/rc.d/ipmon,v
retrieving revision 1.6
diff -u -r1.6 ipmon
--- ipmon	14 Jul 2003 13:02:36 -0000	1.6
+++ ipmon	11 Sep 2003 19:25:03 -0000
@@ -5,7 +5,7 @@
 #
 
 # PROVIDE: ipmon
-# REQUIRE: mountcritlocal hostname sysctl cleanvar
+# REQUIRE: mountcritlocal hostname sysctl cleanvar ipfilter
 # BEFORE:  SERVERS
 # KEYWORD: FreeBSD NetBSD
 
Index: ipfilter
===================================================================
RCS file: /home/ncvs/src/etc/rc.d/ipfilter,v
retrieving revision 1.11
diff -u -r1.11 ipfilter
--- ipfilter	30 Jul 2003 18:53:59 -0000	1.11
+++ ipfilter	11 Sep 2003 19:25:04 -0000
@@ -5,7 +5,7 @@
 #
 
 # PROVIDE: ipfilter
-# REQUIRE: root beforenetlkm mountcritlocal ipmon
+# REQUIRE: root beforenetlkm mountcritlocal
 # BEFORE:  netif
 # KEYWORD: FreeBSD NetBSD
 
>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->darrenr 
Responsible-Changed-By: kris 
Responsible-Changed-When: Fri Oct 10 23:58:03 PDT 2003 
Responsible-Changed-Why:  
Assign to ipfilter author 

http://www.freebsd.org/cgi/query-pr.cgi?pr=56715 
State-Changed-From-To: open->closed 
State-Changed-By: darrenr 
State-Changed-When: Tue Apr 20 06:30:55 PDT 2004 
State-Changed-Why:  
patch applied to -current 

http://www.freebsd.org/cgi/query-pr.cgi?pr=56715 
>Unformatted:
