pf vs. afp
Anh Ky Huynh
kyanh at viettug.org
Fri Dec 25 13:32:10 UTC 2009
On Fri, 25 Dec 2009 04:33:03 -0800 (PST)
Dánielisz László <laszlo_danielisz at yahoo.com> wrote:
>
> ________________________________
>
> Hello,
>
> It's been a while I struggeling how to deal with apf/netatalk
> passing trough my pf rules. If I disable pf everything is working
> great (but I still do want firewall on my server). I tried the
> following rule but it still don't lets me in:
>
> pass in log on $int_if inet proto { tcp, udp } from $localnet to
> ($int_if) port=548 flags S/SA keep state
I think the problem is "($int_if)". You should use, for e.g,
from $localnet to 192.168.1.123
> When I try a telnet on port 548 I got "Operation timed out", in
> pflog I can see that my Mac tries to connect but I have no clue why
> it can't when the coresponding port is open, do you have any idea?
Regards,
--
Anh Ky Huynh
More information about the freebsd-pf
mailing list