nested anchors
krichy at tvnetwork.hu
krichy at tvnetwork.hu
Sun Dec 21 19:29:16 UTC 2014
Dear pf devs,
I found that on FreeBSD 10.1 nested anchors does not work.
This simple config passes traffic from any to 10.2.1.0/24:
anchor from any to 10.2.1.0/24 {
pass quick all
block
block log (to pflog1)
}
If the inner pass is enclosed in another anchor, then the filter drops
packets:
anchor from any to 10.2.1.0/24 {
anchor all {
pass quick all
block
}
block log (to pflog1)
}
That would be very nice to have this working.
Regards,
Kojedzinszky Richard
Euronet Magyarorszag Informatika Zrt.
More information about the freebsd-pf
mailing list