port stealth mode?

Chris Buechler freebsd at chrisbuechler.com
Wed Aug 20 15:06:57 UTC 2008

Leslie Jensen wrote:
> Hello
> I've done some testing with Steve Gibsons "Shields up"
> https://www.grc.com/x/ne.dll?bh0bkyd2
> These tests lists the ports as closed but visible.
> Instead the site suggest that one uses stealth so that the ports are 
> not visible from the Internet.
> Is there a way to achieve this with PF?

That's what pf does by default if you don't specify "return", 
"return-rst" or "return-icmp" in your block rules.

More information about the freebsd-pf mailing list