pf rules

Dánielisz László laszlo_danielisz at
Fri Jan 22 08:52:08 UTC 2010

hi kalin,

my question is: are you telnet-ing to/from/through this machine with the specified pf rules?

From: kalin m <kalin at>
To: freebsd-questions at
Sent: Fri, January 22, 2010 8:12:00 AM
Subject: pf rules

hi all...

doing testing with pf...

how is it possible that if i have these rules below in pf.conf if i do:
telnet 25

i get:
Trying xx.xx.xx.xx...
Connected to
Escape character is '^]'.
........... etc .......

pf.conf contetns:

tcp_in = "{ www, https }"
ftp_in = "{ ftp }"
udp = "{ domain, ntp }"
ping = "echoreq"

set skip on lo
scrub in

antispoof for eth0 inet

block in all
pass out all keep state
pass proto udp to any port $udp
pass inet proto icmp all icmp-type $ping keep state
pass in inet proto tcp to any port $tcp_in flags S/SAF synproxy state
pass proto tcp to any port ssh


freebsd-questions at mailing list
To unsubscribe, send any mail to "freebsd-questions-unsubscribe at"


More information about the freebsd-questions mailing list