pf and multicast

Pyun YongHyeon yongari at kt-is.co.kr
Mon Oct 25 22:33:51 PDT 2004


On Sat, Oct 23, 2004 at 07:44:44PM +0200, Daniel Graupner wrote:
 > Hello,
 > 
 > i'am currently using fbsd 5.2.1 and the security/pf port. With this port 
 > i sadly can not match multicast traffic. My pf is running on a multicast 
 > source an i want to create a rule that allows udp packets to a specific 
 > multicast-address and port.
 > 
 > Is it possible?
 > 

You may need "allow-opts" directive for a pass rule in order to
allow packets with IP options set. pf normally blocks all packets
with IP options set. Check with "pfctl -xm" whether pf drops the
multicast packets.

 > Regards,
 > Daniel.
-- 
Regards,
Pyun YongHyeon
http://www.kr.freebsd.org/~yongari	|	yongari at freebsd.org


More information about the freebsd-pf mailing list