PF in FreeBSD 10.0 Blocking Some SSH
Gleb Smirnoff
glebius at FreeBSD.org
Mon Jan 27 19:20:52 UTC 2014
Robert,
On Sun, Jan 26, 2014 at 06:19:34PM -0500, Robert Simmons wrote:
R> Over the course of a few hours there are a handful of SSH packets that
R> are being blocked both in and out. This does not seem to affect the
R> SSH session, and all the blocked packets have certain flags set [FP.],
R> [R.], [P.], [.], [F.]. The following is my ruleset abbreviated to the
R> rules that apply to this problem:
R>
R> ext_if = "en0"
R> allowed = "{ 192.168.1.10 }"
R> std_tcp_in = "{ ssh }"
R> block in log
R> block out log (user)
R> pass in quick on $ext_if proto tcp from $allowed to ($ext_if) port
R> $std_tcp_in keep state
R>
R> Why are those packets being blocked?
Do I understand you correct that the ssh sessions work well, but you
see blocked packets in the pflog?
--
Totus tuus, Glebius.
More information about the freebsd-pf
mailing list