Stuart Henderson wrote:
On 2008-07-28, Charlie Clark <[EMAIL PROTECTED]> wrote:
Stuart Henderson wrote:
On 2008/07/28 11:37, Charlie Clark wrote:
don't you have some way to handle the other situations where pfctl -sr
doesn't output exactly what pfctl -f was fed as input? how do you handle
macros or the ruleset optimiser?
There are no macro's as I'm using fwbuilder to build the
ruleset and isn't the ruleset optimiser is set using a set
option,
it's on by default.
In this case would 'pfctl -sr' or 'pfctl -sn' not show the new optimized
ruleset?
Yes, and it won't match what you fed it. So your diff will fail won't it?
No not if both of the files which are being compared were created using
pfctl -s
--
Charlie Clark
Network Engineer
Lemon Computing Ltd
Unit 9
26-28 Priests Bridge
London
SW14 8TA
UK
Tel: +44 208 878 2138
Fax: +44 208 878 2163
Email: [EMAIL PROTECTED]
Site: http://www.lemon-computing.com/
Lemon Computing is a limited company registered in England & Wales under
Company No. 03697052
