FreeBSD 15 permission for pfctl
0 views
Skip to first unread message
Matthias Fechner
Dec 6, 2025, 11:53:18 AM (13 days ago) Dec 6
to ques...@freebsd.org
Dear all,
it seems that with FreeBSD 15 there is additional permission required to
execute pfctl.
With FreeBSD 14 I had in /etc/devfs.conf:
own pf root:icinga
perm pf 0640
this allowed the group icinga to use pfctl, but now I get:
pfctl: Failed to open netlink: Bad file descriptor
does anyone have a idea what additional change in FreeBSD 15 is required
to allow a normal user to use pfctl to read information about the pf
firewall?
Thanks a lot!
Matthias
it seems that with FreeBSD 15 there is additional permission required to
execute pfctl.
With FreeBSD 14 I had in /etc/devfs.conf:
own pf root:icinga
perm pf 0640
this allowed the group icinga to use pfctl, but now I get:
pfctl: Failed to open netlink: Bad file descriptor
does anyone have a idea what additional change in FreeBSD 15 is required
to allow a normal user to use pfctl to read information about the pf
firewall?
Thanks a lot!
Matthias
Reply all
Reply to author
Forward
0 new messages