Record dependency on the newly introduced pfsync.

Start before routing for better system protection. (pf used to start late during system boot, after many a network daemon have started already, which sucked from security POV.) Remark: For maximum security, pf should start before netif, but it would create a dependency loop because pfsync has to start after netif, yet before pf. Discussed with: mlaier on -pf MFC after: 5 days
author: yar <yar@FreeBSD.org> 2005-10-02 19:12:42 +0000
committer: yar <yar@FreeBSD.org> 2005-10-02 19:12:42 +0000
commit: 778f700a6719138837df97cf5abfa2f4c8c80e9b (patch)
tree: 792cf568f468ca4983a432e6f859196f7fcba397 /etc
parent: 327895a26d00e4a20e74f7f0f563dbda350408fa (diff)
download: FreeBSD-src-778f700a6719138837df97cf5abfa2f4c8c80e9b.zip
FreeBSD-src-778f700a6719138837df97cf5abfa2f4c8c80e9b.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/etc/rc.d/pf b/etc/rc.d/pf
index 3082796..f2dc8c7 100644
--- a/etc/rc.d/pf
+++ b/etc/rc.d/pf
@@ -4,8 +4,8 @@
 #
 
 # PROVIDE: pf
-# REQUIRE: root mountcritlocal netif pflog
-# BEFORE:  DAEMON LOGIN
+# REQUIRE: root mountcritlocal netif pflog pfsync
+# BEFORE:  routing
 # KEYWORD: nojail
 
 . /etc/rc.subr
author	yar <yar@FreeBSD.org>	2005-10-02 19:12:42 +0000
committer	yar <yar@FreeBSD.org>	2005-10-02 19:12:42 +0000
commit	778f700a6719138837df97cf5abfa2f4c8c80e9b (patch)
tree	792cf568f468ca4983a432e6f859196f7fcba397 /etc
parent	327895a26d00e4a20e74f7f0f563dbda350408fa (diff)
download	FreeBSD-src-778f700a6719138837df97cf5abfa2f4c8c80e9b.zip FreeBSD-src-778f700a6719138837df97cf5abfa2f4c8c80e9b.tar.gz