On 2008-07-28, Charlie Clark <[EMAIL PROTECTED]> wrote: > I have, this is the script I am talking about, I want to know how to > make the script know about option changes, eg. block policy, state > policy
block policy and state policy don't get sent to /dev/pf, they only affect how pfctl(8) parses the rules. don't you have some way to handle the other situations where pfctl -sr doesn't output exactly what pfctl -f was fed as input? how do you handle macros or the ruleset optimiser?
