Subject: pf: pass in quick to port 25 still getting some blocks
Len Conrad
lconrad at Go2France.com
Fri Jul 2 21:25:41 UTC 2010
setting up pf on fbsd 7.2 for host security on a mail gateway.
the only rule for port 25 is:
pass in quick on em0 inet proto tcp from any to $ext_if port = smtp flags S/SA keep state
and then last rule:
block drop in log on em0 inet from any to $ext_if
while 1000s of connections to port 25 are getting through with the pass rule, several 100 connections are getting blocked with the default block rule, bypassing the pass rule.
I can't see how pf is selecting these connections to be blocked.
thanks
Len
More information about the freebsd-questions
mailing list