afp+pf

[Dánielisz László]

Hello,

It's been a while I struggeling how to deal with apf/netatalk passing trough my pf rules. If I disable pf everything is working great (but I still do want firewall on my server). I tried the following rule but it still don't lets me in:

pass in log on $int_if inet proto { tcp, udp } from $localnet to ($int_if) port=548  flags S/SA keep state

When I try a telnet on port 548 I got "Operation timed out", in pflog I can see that my Mac tries to connect but I have no clue why it can't when the coresponding port is open, do you have any idea?

Thank you!
Laci