pf block IP immediately

Vincent Hoffman vince at unsane.co.uk
Tue Feb 11 15:47:54 UTC 2014


On 11/02/2014 15:07, skeletor at lissyara.su wrote:
> Hello.
> I have a FreeBSD 9.2 amd64 with pf (build in kernel).
> Can pf block some IP (sessions) immediately? Next rule can block only
> new sessions, but currect open sessions stay open as long as they open
> by IP
>
> block quick from X.X.X.X to any
> block quick from any to X.X.X.X
>
> Also, I can do pfctl -F sessions, but it flushes all sessions of all
> users.
>
> tcpdrop not shown this sessions, because this is a nat sessions.
pfctl -k
or -K looks like what you need.

The pfctl(8) man page seems to cover it quite well.


Vince


>
> Thanks.
> _______________________________________________
> freebsd-pf at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-pf
> To unsubscribe, send any mail to "freebsd-pf-unsubscribe at freebsd.org"
>



More information about the freebsd-pf mailing list