On Mon, Sep 02, 2019 at 05:51:23PM -0000, Stuart Henderson wrote: > On 2019-09-01, Felix Hanley <fe...@userspace.com.au> wrote: > > I had assumed I would be able to use the existing pf.conf (which has > > worked for years) even after the introduction of the vlan2 interface > > as the pppoe0 parent. To get anything to work I had to remove all > > queueing references. > > Note that queues should be done on the *physical* interface, i.e. the > ethernet interface that is the parent of the vlan that is the parent of > the pppoe.
I did not know that, thank you. I have no queueing at the moment. It is as if the daemons do not listen on the new em0 -> vlan2 -> pppoe0 chain of interfaces. I cannot even rdr-to localhost to connect to them. I have tried all the following variations: - IP address on vlan2 - Explicitly listening on various IP addresses (on vlan2 and pppoe0) - Disabling IPv6 completely The only incoming connections that work are those that I rdr-to hosts on the internal network. I am suspicious of my vlan2 config, particularly the txprio setting. It does not work without it but I know little about DSCP so I am not sure if I need to add something to pf.conf as well. Would that even stop packets to local daemons??: # cat /etc/hostname.vlan2 vnetid 2 parent em0 txprio 1 up Thanks again for your help. -felix
