I have a simple pf firewall, and to "rebuild" it (in case of disaster) I think I can probably just backup some selected files.
List below. Is this a sound approach in principle? And/or have I missed any obvious files/locations?(thanks!) /etc/ntpd.conf ntp configuration /etc/rc.conf services to start /etc/rc.conf.local autostart unbound and dhcpd at boot /etc/login.conf.d/unbound unbound file descriptor limit increase /etc/dhcpleased.conf stop the dns supplied in dhcp from writing to resolve.conf - WAN/ISP NIC /etc/doas.conf doas config /etc/myname system name /etc/sysctl.conf enabled ipv4 packet forwarding /etc/hostname.* network interface configs /etc/dhcpd.conf dhcp server config /etc/pf.conf pf firewall config /var/unbound/etc/unbound.conf unbound dns server config /etc/resolv.conf point dns at self > >
