Issue with PF on FreeBSD 6.2.5?

Laurent LEVIER llevier at argosnet.com
Thu Jul 5 18:10:17 UTC 2007


> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> PF always examines its state table before evaluating rules, so once a
> state entry is created you must clear it in order to stop communications
> on that open connection.
>
> See pfctl(1) specifically -k option:
>
>     -k host
>
> 	Kill all of the state entries originating from the specified
> 	host.  A second -k host option may be specified, which will kill
> 	all the state entries from the first host to the second host.
> 	For example, to kill all of the state entries originating from
> 	host:
>
> 	    # pfctl -k <host>
>
> 	To kill all of the state entries from host1 to host2:
>
> 	    # pfctl -k <host1> -k <host2>
>
Hi David,

Thanks for your input.
However, I tested this and it did not helped :-(

Brgrds



More information about the freebsd-pf mailing list