afp+pf
Dánielisz László
laszlo_danielisz at yahoo.com
Wed Dec 23 18:08:51 UTC 2009
I'm sending you my pflog captured whiled I try to connect, maybe somebody will figure out something:
# tcpdump -i rl0 -n port 548
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on rl0, link-type EN10MB (Ethernet), capture size 96 bytes
19:01:31.353245 IP 192.168.1.101.63912 > 192.168.1.1.548: Flags [S], seq 721406618, win 65535, options [mss 1460,nop,wscale 3,nop,nop,TS val 206874734 ecr 0,sackOK,eol], length 0
19:01:35.358575 IP 192.168.1.101.63912 > 192.168.1.1.548: Flags [S], seq 721406618, win 65535, options [mss 1460,sackOK,eol], length 0
________________________________
From: Dánielisz László <laszlo_danielisz at yahoo.com>
To: freebsd-questions at freebsd.org
Sent: Wed, December 23, 2009 6:35:02 PM
Subject: Re: afp+pf
I just tried with "flags any" but still not working.
________________________________
From: Dánielisz László <laszlo_danielisz at yahoo.com>
To: freebsd-questions at freebsd.org
Sent: Wed, December 23, 2009 5:01:41 PM
Subject: afp+pf
Hello,
It's been a while I struggeling how to deal with apf/netatalk passing trough my pf rules. If I disable pf everything is working great (but I still do want firewall on my server). I tried the following rule but it still don't lets me in:
pass in log on $int_if inet proto { tcp, udp } from $localnet to ($int_if) port=548 flags S/SA keep state
When I try a telnet on port 548 I got "Operation timed out", in pflog I can see that my Mac tries to connect but I have no clue why it can't when the coresponding port is open, do you have any idea?
Thank you!
Laci
More information about the freebsd-questions
mailing list