From 2decc9b53aec08a5021885c7ccdbef79466a8e3b Mon Sep 17 00:00:00 2001 From: tschettervictor <85497460+tschettervictor@users.noreply.github.com> Date: Wed, 19 Nov 2025 14:52:32 -0500 Subject: [PATCH] setup: set some vars only on bridge setup --- usr/local/share/bastille/setup.sh | 22 ++++++++++++---------- 1 file changed, 12 insertions(+), 10 deletions(-) diff --git a/usr/local/share/bastille/setup.sh b/usr/local/share/bastille/setup.sh index 4bb6256c..a5f438d6 100644 --- a/usr/local/share/bastille/setup.sh +++ b/usr/local/share/bastille/setup.sh @@ -212,6 +212,7 @@ configure_bridge() { else _interface_select="${_auto_if}" fi + # Create bridge and persist on reboot _bridge_name="${_interface_select}bridge" ifconfig bridge0 create @@ -221,6 +222,17 @@ configure_bridge() { sysrc ifconfig_bridge0_name="${_bridge_name}" sysrc ifconfig_${_bridge_name}="addm ${_interface_select} up" + # Set some sysctl values + sysctl net.inet.ip.forwarding=1 + sysctl net.link.bridge.pfil_bridge=0 + sysctl net.link.bridge.pfil_onlyip=0 + sysctl net.link.bridge.pfil_member=0 + echo net.inet.ip.forwarding=1 >> /etc/sysctl.conf + echo net.link.bridge.pfil_bridge=0 >> /etc/sysctl.conf + echo net.link.bridge.pfil_onlyip=0 >> /etc/sysctl.conf + echo net.link.bridge.pfil_member=0 >> /etc/sysctl.conf + + info "\nBridge interface successfully configured: [${_bridge_name}]" else info "\nBridge has alread been configured: [${_bridge_name}]" @@ -244,16 +256,6 @@ configure_vnet() { fi fi - # Set some sysctl values - sysctl net.inet.ip.forwarding=1 - sysctl net.link.bridge.pfil_bridge=0 - sysctl net.link.bridge.pfil_onlyip=0 - sysctl net.link.bridge.pfil_member=0 - echo net.inet.ip.forwarding=1 >> /etc/sysctl.conf - echo net.link.bridge.pfil_bridge=0 >> /etc/sysctl.conf - echo net.link.bridge.pfil_onlyip=0 >> /etc/sysctl.conf - echo net.link.bridge.pfil_member=0 >> /etc/sysctl.conf - # Create default VNET ruleset if [ ! -f /etc/devfs.rules ] || ! grep -oq "bastille_vnet=13" /etc/devfs.rules; then info "\nCreating bastille_vnet devfs.rules"