On 30/07/2021 04:37, Theo de Raadt wrote:
Does that prevent dhcpd from listening on any virtual interface? I'm trying to have it listen for requests on a vether in a bridge, and that fails (or I'm making a mistake).dhcpleased (and a few other daemons) use bpf, thus see raw packets from the wire before pf can block them. Most daemons of this type also use bpf to send packets, and pf doesn't see these either
-- Étienne
