w...@worrbase.com a écrit : > Package: kfreebsd-image-7.2-1-486 > Version: 7.2-11 > Severity: grave > Justification: renders package unusable > > pf ignores any and all rules configured in /etc/pf.conf, even after being > told to reload the ruleset with pfctl -f /etc/pf.conf. > > I've tested this by blocking all traffic with the pf rule: > block all > and sshing in and out of the system, as well as running iperf. > > I've tested this by explicitly blocking ssh traffic > block in quick on em0 inet proto tcp from any to any port 22 > and sshing in > > I've tested this by explicitly blocking iperf traffic (tcp port 5001 by > default) > block out quick on em0 inet proto tcp from any to any port 5001 > and running iperf as a client on this system > > The pf module is loaded, and I did in fact reload the rules with pfctl -f > /etc/pf.con > prior to each test. I even did a pfctl -s rules and the running config aligned > with the rules I set each time. >
This is not something I am able to reproduce here. Have you enable pf with "pfctl -e"? -- Aurelien Jarno GPG: 1024D/F1BCDB73 aurel...@aurel32.net http://www.aurel32.net -- To UNSUBSCRIBE, email to debian-bsd-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
