Filtering bridge with pf.
Carsten Sonne Larsen
cs at innolan.dk
Thu Apr 4 14:40:22 UTC 2013
Hello guy,
I am using pf to implement a filtering bridge but Im experinces some
strange behaviour from pf. While using tcpdump I get entries like this:
16:25:45.998253 rule 2..16777216/0(match): block in on rl0:
192.168.0.1.32768 > 239.255.255.250.1900: UDP, length 339
I am using the keyword *quick* and would expect a certain rule match
instead of rule 2..16777216
Also using pftop for some reason states does not expire while looking in
the rules view.
Could this be due a miscompiled kernel or maybe simply a faulty
configuration ? Im using 9.1 on a AMD Geode CPU.
Thanks in advance.
Carsten Sonne Larsen
More information about the freebsd-pf
mailing list