I would take steps to see if another rule is being matched when you see the flaw?
Brian On Jul 9, 2012 12:28 PM, "Peter J. Philipp" <p...@centroid.eu> wrote: > > On Mon, Jul 09, 2012 at 12:47:18PM -0600, Luis Coronado wrote: > > You need to provide more information about your situation to be able to > > help you. dmesg, pf ruleset, network config., etc. > > > > -luis > > Due to the sensitivity of the host I cannot do that. But I'll tell you what > I will do. Upgrade. Perhaps by next week even. I'll let you know if the > problem persists then, and perhaps I'll even get an OK to share the hardware > data by then. > > I understand you can't help me much more, thanks anyways... > > Regards, > > -peter > > > > On Mon, Jul 9, 2012 at 12:34 PM, Peter J. Philipp <p...@centroid.eu> wrote: > > > > > Hi, > > > > > > Was there any bugfixes between 5.0 and 5.1 that would allow certain packets > > > through the pf filter? I have a case where I cannot block a certain IP on > > > a 5.0 box. I tested that same IP on an 5.1 box with a spoofer and I found > > > my same rules to catch, so it's not my logic I don't think. > > > > > > I tested with tcpdump, netcat, and custom software. > > > > > > Any hint would be nice, > > > > > > -peter
