Hi,
I implemented a OpenBSD solution for a soekris appliance. My problem is that I have a web portal there and I need a new pass rule for each client IP authenticating. Actually this was easy to do with linux iptables, but how to do it with PF ? Actually all the PF rules are into a file, and can be read from file. This is fare to be a dynamic system. Rules must first be deleted fomr file and then reloaded with pfctl. My problem is, how can I Remove a single PF rule without modifying a text file and realoading all the rules ?
Maybe you can use tables : http://www.openbsd.org/faq/pf/tables.html and use pfctl(8) to update such tables (options -t and -T)
