Fwd: Issues with pf and snmp
DAve
dave.list at pixelhammer.com
Fri Apr 16 04:11:23 UTC 2010
DAve wrote:
> Peter Maxwell wrote:
>> Can't see anything obvious but have you tried these things in the event
>> something strange is going on:
>>
>> - removing the scrub rule;
>>
>> - removing the antispoof rule;
>>
>> - add 'log' to the the pass rules and then check to see if there are any
>> other snmp udp packets getting passed/dropped in the wrong place.
>
> A good idea. I will try to get that done this evening, though I am
> running 100% until Monday.
>
Nope, no scrubbing no antispoof, same result exactly. I did check
snmpget and it seemed to work. I will check which oid is next in line
and see if I can get that value next.
It appears some restriction on the snmpwalk, possibly a limit on how
many results are being returned? (Shooting in the dark now).
I use Cacti everywhere within our networks, no snmpwalk is a show
stopper for me here...
DAve
--
"Posterity, you will know how much it cost the present generation to
preserve your freedom. I hope you will make good use of it. If you
do not, I shall repent in heaven that ever I took half the pains to
preserve it." John Adams
http://appleseedinfo.org
More information about the freebsd-pf
mailing list