[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

"pfctl -n" fails when run by a non-root user.



hi gang,
as i was playing with some ruleset, i noticed that i couldn't use 
"pfctl -n" as non-root user anymore when there is a nat rule in the
ruleset.
as an example:
$ cat foo.conf                                                                 
ext_if="vr0"
nat on $ext_if from !($ext_if) -> ($ext_if:0)
pass in all
pass out all
$ pfctl -nf foo.conf                                                           
pfctl: ifa_load: pfi_get_ifaces: Bad file descriptor
$ sudo pfctl -nf foo.conf                                                      
$ 
just thought i would report this.  i'm running -current.
please tell me if more info is needed (dmesg or the like)
cheers,
jb