On Fri, Jul 4, 2008 at 4:32 AM, Jeremy Chadwick <[EMAIL PROTECTED]> wrote:
> On Thu, Jul 03, 2008 at 08:55:21AM -0700, Kian Mohageri wrote:
>> On Wed, Jul 2, 2008 at 5:39 PM, Stef <[EMAIL PROTECTED]> wrote:
>> > Kian Mohageri wrote:
>> >> On Sun, May 18, 2008 at 3:33 AM, Johan Ström <[EMAIL PROTECT
On Fri, Jul 04, 2008 at 04:32:13AM -0700, Jeremy Chadwick wrote:
> On Thu, Jul 03, 2008 at 08:55:21AM -0700, Kian Mohageri wrote:
> > A similar/related problem was addressed in OpenBSD 4.3
> > (http://www.openbsd.org/plus43.html).
> >
> > * In pf(4), allow state reuse if both sides are in FIN_WA
On Thu, Jul 03, 2008 at 08:55:21AM -0700, Kian Mohageri wrote:
> On Wed, Jul 2, 2008 at 5:39 PM, Stef <[EMAIL PROTECTED]> wrote:
> > Kian Mohageri wrote:
> >> On Sun, May 18, 2008 at 3:33 AM, Johan Ström <[EMAIL PROTECTED]> wrote:
> >>> On May 18, 2008, at 9:19 AM, Matthew Seaman wrote:
> >>>
> >>>
On Wed, Jul 2, 2008 at 5:39 PM, Stef <[EMAIL PROTECTED]> wrote:
> Kian Mohageri wrote:
>> On Sun, May 18, 2008 at 3:33 AM, Johan Ström <[EMAIL PROTECTED]> wrote:
>>> On May 18, 2008, at 9:19 AM, Matthew Seaman wrote:
>>>
Johan Ström wrote:
> drop all traffic)? A check with pfctl -vsr
Kian Mohageri wrote:
> On Sun, May 18, 2008 at 3:33 AM, Johan Ström <[EMAIL PROTECTED]> wrote:
>> On May 18, 2008, at 9:19 AM, Matthew Seaman wrote:
>>
>>> Johan Ström wrote:
>>>
drop all traffic)? A check with pfctl -vsr reveals that the actual rule
inserted is "pass on lo0 inet from 123
On Sun, May 18, 2008 at 3:33 AM, Johan Ström <[EMAIL PROTECTED]> wrote:
> On May 18, 2008, at 9:19 AM, Matthew Seaman wrote:
>
>> Johan Ström wrote:
>>
>>> drop all traffic)? A check with pfctl -vsr reveals that the actual rule
>>> inserted is "pass on lo0 inet from 123.123.123.123 to 123.123.123.1
On May 18, 2008, at 9:19 AM, Matthew Seaman wrote:
Johan Ström wrote:
drop all traffic)? A check with pfctl -vsr reveals that the actual
rule inserted is "pass on lo0 inet from 123.123.123.123 to
123.123.123.123 flags S/SA keep state". Where did that "keep state"
come from?
'flags S/SA
Johan Ström wrote:
drop all traffic)? A check with pfctl -vsr reveals that the actual rule
inserted is "pass on lo0 inet from 123.123.123.123 to 123.123.123.123
flags S/SA keep state". Where did that "keep state" come from?
'flags S/SA keep state' is the default now for tcp filter rules -- th
First of all, for freebsd-pf subscribers, I posted my original problem
(in the bottom) to freebsd-net earlier, but replies seems to point to
PF so I'll CC there too..
On May 17, 2008, at 5:19 PM, Alex Trull wrote:
Hi Johan and List,
In my case a few months ago it was pahu. Don't give tha
On Sat, May 17, 2008 at 04:33:20PM +0200, Johan Ström wrote:
> Hello
>
> I got a FreeBSD 7 machine running mail services (among other things). This
> machine recently replaced a FreeBSD 6.2 machine doing the same tasks.
> Now and then I need to send alot of mail to customers (mailing list), and
>
Hi Johan and List,
In my case a few months ago it was pahu. Don't give that fine fellow an
account on your precious system !
But seriously, I had a pf-firewalled jail being being used for DNS
testing, with large numbers of udp "connections" hanging around in pf
state. While the default udp timeou
Hello
I got a FreeBSD 7 machine running mail services (among other things).
This machine recently replaced a FreeBSD 6.2 machine doing the same
tasks.
Now and then I need to send alot of mail to customers (mailing list),
and one thing i've noticed now after the change is that when I use a
12 matches
Mail list logo
