authpf on FreeBSD 5.3 : the answer

Jacques Beigbeder Tue, 01 Mar 2005 08:34:31 -0800

>> Kernel (the standard one, from CD distribution):
>> FreeBSD mybox.ens.fr 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov  5 04:19:18 
>> UTC 2004
>>      [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC  i386
>> 
>> I fail to have authpf working on FreeBSD 5.3.
>> I setup a pf.conf file ending with:
>>      anchor "authpf/*"
>> 'pfctl -sr' displays correctly:
>>      [ ... ]
>>      anchor authpf/* all
>> 'pfctl -a authpf -s rules' displays:
>>      No rulesets in anchor 'authpf'.
>> I run an ssh on a client, and then 'pfctl -a authpf -s rules' displays:
>> (a poor rule just for test):
>>      pass in quick on bge1 inet proto tcp from 1.2.3.4 to any


The answer: add 'keep state':
        pass in quick on bge1 inet proto tcp from 1.2.3.4 to any keep state


--
Jacques Beigbeder                    |  [EMAIL PROTECTED]
Service de Prestations Informatiques |     http://www.spi.ens.fr
Ecole normale supérieure             |
45 rue d'Ulm                         |Tel : (+33 1)1 44 32 37 96
F75230 Paris cedex 05                |Fax : (+33 1)1 44 32 20 75

_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

authpf on FreeBSD 5.3 : the answer

Reply via email to