problem with IPF rules - (problem solved but i'm still confused)

Erik Nørgaard norgaard at locolomo.org
Mon Sep 19 14:20:12 PDT 2005


jonas wrote:
> adding a 'keep state' to the 'pass in'-rules solved this problem.
> but i still do not understand why it didn't work before, because
> outgoing traffic was allowed with
> "pass out quick on ng0 from any to any keep state"
> i'ld really prefer to know what's going on there :)
> 
> any ideas?

It would help if you would post your ruleset and not the readout, it's 
easier to read. Secondly, it is posible to compile ipf with default 
block - post the default action also.

Cheers, Erik


-- 
Ph: +34.666334818                           web: http://www.locolomo.org
S/MIME Certificate: http://www.locolomo.org/crt/2004071206.crt
Subject ID:  A9:76:7A:ED:06:95:2B:8D:48:97:CE:F2:3F:42:C8:F2:22:DE:4C:B9
Fingerprint: 4A:E8:63:38:46:F6:9A:5D:B4:DC:29:41:3F:62:D3:0A:73:25:67:C2


More information about the freebsd-questions mailing list