Re: Re: Pf igen igen

• Next message: Claus Guttesen: "Re: mange brugere i gruppen www på apache/FreeBSD 5.3"
• Previous message: Tue Topholm: "RE: Re: Pf igen igen"
• In reply to: Tue Topholm: "RE: Re: Pf igen igen"
• Maybe reply: Tue Topholm: "RE: Re: Re: Pf igen igen"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

From: "Jesper Louis Andersen" <none@jlouis--mongers.org.lh.bsd-dk.dk>
Date: Sun, 7 Nov 2004 21:43:37 +0100
To: bsd-dk@bsd-dk.dk
Subject: Re: Re: Pf igen igen

Quoting Tue Topholm (tt@device.dk):

> Men nu er mit store spg.
> N?r jeg s?tter den her ind:
>
> block in log on $int_if all
>
> s? blokere alt, selvom jeg f.eks har denne regel under den ovenst?ende
>
> pass in on $int_if proto tcp from any to 1.2.3.4 port http flags S/SA modulate state
>
> Har siddet i flere timer og kloget p? det, if?lge pf faq, vil en regel der kommer bagefter, altid overvinde den f?rste, men det g?r den ikke her, hvorfor???

Du kan ikke faa svaret ved at taenke. Brug tcpdump(1) til at se hvad der egentlig kommer.
Hvad sker der eksempeltvist med DNS-queries fra det interne net?

-- 
< Keltus> .. now back to reading my /. and compiling my \
  l33t gentoo linux which makes it 5000% faster than \
  your lame not-even-a-real-OS computer. Uptime: 20000 days, 4 hours

• Next message: Claus Guttesen: "Re: mange brugere i gruppen www på apache/FreeBSD 5.3"
• Previous message: Tue Topholm: "RE: Re: Pf igen igen"
• In reply to: Tue Topholm: "RE: Re: Pf igen igen"
• Maybe reply: Tue Topholm: "RE: Re: Re: Pf igen igen"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:46 CET