On Tue, Dec 20, 2005 at 07:42:30PM +0000, ed wrote:
> Hello,
>
> Just a stab in the dark, does anyone have advise/experience/suggestions
> for debugging firewall problems?
>
> Every now and then I do something which is just brain dead but takes a
> while to figure out, its usually a typo in my rule set, but just
> wondering if there's any tools out there to help show where a given
> packet will go though the path of the firewall... You're all probably
> going to tell me this is possible already with some discipline and
> pfctl -sa.
pfctl -n? It should catch, at least, typos.
Joachim
