Testing new firewall to replace operational firewall
mehma sarja
mehmasarja at gmail.com
Tue May 19 05:11:13 UTC 2009
Maciej,
Thanks for answering one question. Now, does anyone know anything about
"modulated state" running on tandem firewalls causing problems?
Yudhvir
===
2009/5/18 Maciej Milewski <milu at dat.pl>
> Monday 18 May 2009 08:20:40 mehma sarja napisał(a):
> > SECOND
> > Are the "flags S/SA" altq functions? Because, as I said before, the new
> > firewall is FreeBSD GENERIC kernel with altq not compiled in.
> No, they aren't as far as I know. Altq is a mechanism using for
> queuing/traffic shaping. If you don't compile it it just can't be used. For
> more info please look at PF FAQ or pf manual.
>
>
> S/SA is from flags and means SYN and ACK.
> Handbook says "FreeBSD 7.X -- PF is at OpenBSD 4.1" So this option (flags
> S/SA) is set by default. If you omit it in config it will be set.
>
>
>
> Best Regards,
> Maciej Milewski
>
More information about the freebsd-pf
mailing list