why are pf-blocked ips 'leaking' thru to spamd?
Jon Simola
jsimola at gmail.com
Fri Apr 27 18:51:03 UTC 2007
On 4/27/07, snowcrash <schneecrash+pf at gmail.com> wrote:
> i suppose alternative would be to,
>
> --- set require-order yes
> +++ set require-order no
>
> and put some
>
> block quick <ip-black>
>
> BEFORE those rdr's ... to prevent those addresses in <ip-black> from
> ever seeing the redirection in the first place
no rdr proto tcp from <ip-black> to any port smtp
... other rdr stuff ...
block from <ip-black>
"The no option prefixed to a translation rule causes packets to remain un-
translated, much in the same way as drop quick works in the packet filter"
--
Jon
More information about the freebsd-pf
mailing list