logging pass rules
Aguiar Magalhaes
magalhj at yahoo.com.br
Sun May 7 00:38:41 UTC 2006
List,
I have a rule "block log all" in my pf.conf and the
command "tcpdump -n -e -ttt -i pflog0" shows me the
blocked packages.
I'd like to make the same with the pass rules and then
to know the matched pass rule:
block log all
pass in on $int_if inet proto tcp from $internal_net
to any port 80 keep state
pass in on $int_if proto udp from $internal_net to any
port 53 keep state
... etc
Do I have to add the word "log" for each pass rule ?
Is there another way ?
How can i do it ?
Thanks,
Aguiar
_______________________________________________________
Abra sua conta no Yahoo! Mail: 1GB de espaço, alertas de e-mail no celular e anti-spam realmente eficaz.
http://br.info.mail.yahoo.com/
More information about the freebsd-pf
mailing list