blob: 3a40525a97d6e9ec2f86c88045d0c6adb5e7263e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
|
#!/bin/sh
#
# $FreeBSD$
#
# PROVIDE: pflog
# REQUIRE: root beforenetlkm mountcritlocal netif
# BEFORE: DAEMON LOGIN
# KEYWORD: FreeBSD nojail
. /etc/rc.subr
name="pflog"
rcvar=`set_rcvar`
load_rc_config $name
stop_precmd="test -x ${pflog_program}"
start_precmd="pflog_prestart"
start_cmd="pflog_start"
stop_cmd="pflog_stop"
resync_precmd="$stop_precmd"
resync_cmd="pflog_resync"
status_precmd="$stop_precmd"
status_cmd="pflog_status"
extra_commands="resync status"
pflog_prestart()
{
# load pflog kernel module if needed
if ! kldstat -v | grep -q pflog\$; then
if kldload pflog; then
info 'pflog module loaded.'
else
err 1 'pflog module failed to load.'
fi
fi
# set pflog0 interface to up state
if ! ifconfig pflog0 up; then
warn 'pflog: COULD NOT SET UP pflog0'
fi
# check for pf rules
if [ ! -x "${pflog_program:-/sbin/pflogd}" ]
then
warn 'pflog: NO PFLOGD BINARY FOUND'
return 1
fi
}
pflog_start()
{
echo -n "Enabling pflogd"
if ! ${pflog_program:-/sbin/pflogd} ${pflog_flags} \
-f ${pflog_logfile:-/var/log/pflog}; then
echo " failed!"
else
echo "."
fi
}
pflog_stop()
{
if [ -r /var/run/pflogd.pid ]; then
echo "Stopping pflogd."
kill `cat /var/run/pflogd.pid`
fi
}
pflog_resync()
{
if [ -r /var/run/pflogd.pid ]; then
kill -SIGHUP `cat /var/run/pflogd.pid`
fi
}
pflog_status()
{
if [ -r /var/run/pflogd.pid ]; then
ps -p `cat /var/run/pflogd.pid` | tail -n 1
else
echo 'pflogd not running.'
fi
}
run_rc_command "$1"
|
