#!/bin/sh
#
# PROVIDE: pflogger
# REQUIRE: root mountcritlocal netif cleanvar syslogd
# KEYWORD: nojail

. /etc/rc.subr

name="pflogger"
rcvar=`set_rcvar`
command="/usr/sbin/tcpdump"
pidfile="/var/run/pflogger.pid"
start_cmd="pflogger_start"
start_precmd="pflogger_prestart"
stop_postcmd="pflogger_poststop"

pflogger_start()
{
	daemon -p $pidfile $command -netlp -i pflog0 2>/dev/null | su -m _pflogd -c "daemon logger -t pf -p security.info"
}

pflogger_prestart()
{
	# load pflog kernel module if needed
	if ! kldstat -q -m pflog; then
		if kldload pflog; then
			info 'pflog module loaded.'
		else
			warn 'pflog module failed to load.'
			return 1
		fi
	fi

	# set pflog0 interface to up state
	if ! ifconfig pflog0 up; then
		warn 'could not bring up pflog0.'
		return 1
	fi

	# report we're ready to run pflogd
	return 0
}

pflogger_poststop()
{
	if ! ifconfig pflog0 down; then
		warn 'could not bring down pflog0.'
		return 1
	fi
	return 0
}

load_rc_config $name
run_rc_command "$1"