Marcos Laufer wrote:
Hello,
I am testing pf in an OpenBSD 4.1. This same configuration works fine on
OpenBSD 3.9, but in 4.1 it is not filtering anything, everything is passing
thru,
just like as if there was no 'block all'. What worries me most is that
anyone
on the outside can see my ssh service .
Is there anything wrong with the state of my rules? If i didn't
misunderstand ,
this rules should work just fine
Any ideas?
Thanks in advance,
Marcos
# good guys
table <goodhosts> persist
pass in quick on egress from <goodhosts> to any keep state
I'm no pf expert, so here's a simple question. What, if anything, is in
table <goodhosts>? Maybe you're allowing everything in because of that
table, or maybe you're testing from an IP defined as OK in that table?
