PF and kernel-level PPPoE(4)
OpenBSD 4.5
xl0 internal interface
xl1 external interface
DSL modem in bridging mode
I want to replace an Endian firewall with an OpenBSD firewall.
I understand kernel-level PPPoE works better than userland PPPoE.
I am able to set PPPoE up, but I have some questions regarding the PF aspect of it. I have followed the guides but I am stuck on these issues.
1) With kernel-level PPPoE, is it necessary for PF to be disabled until after the connection is brought up? If so, how do I enable PF as soon as the connection goes live? What happens if the connection dies?
2) pppoe0 replaces xl1 as the external interface in pf.conf, correct?
Thank you.
|