Re: selective logging of what pf is rejecting?

Hi, do you see the packets with tcpdump with -i $ext_if options? #tcpdump -ttt -n -i rl0 icmp for icmp packets.. 2005/9/9, bob self <[EMAIL PROTECTED]>: > Max Laier wrote: > > >On Friday 09 September 2005 21:17, Huzeyfe Onal wrote: > > > > > >>hi, > >>you can use tcpdump to watch pf action, wh

synproxy state and route-to issues

I've got a machine setup with two internet facing interfaces that I want to do policy based routing on. FreeBSD 6 beta 4 First two octets of the IP addresses intentionally masked. dc0 == lan (192.168.1.1/24 ) dc1 == isp1 (192.168.186.1/24 ) dc2 ==

Re: selective logging of what pf is rejecting?

Max Laier wrote: On Friday 09 September 2005 21:17, Huzeyfe Onal wrote: hi, you can use tcpdump to watch pf action, why it drop or accept packets. try to use tcpdump -i pflog0 -e right. ps: pflogd must be running... also read http://www.openbsd.com/faq/pf/logging.html wro

Re: vsftpd behind NAT problem

On 9/9/05, Nikos I. Gabrielides <[EMAIL PROTECTED]> wrote: > Hi all, > > I am using an FTP Server behind NAT (vsftpd v1.2.0-5 on > Fedora Core 1 kernel 2.4.22-1.2115.nptl). > The server is behind NAT router (Zyxel Prestige 660R-61). > I have problems connecting to it from a computer outside. > >

vsftpd behind NAT problem

Hi all, I am using an FTP Server behind NAT (vsftpd v1.2.0-5 on Fedora Core 1 kernel 2.4.22-1.2115.nptl). The server is behind NAT router (Zyxel Prestige 660R-61). I have problems connecting to it from a computer outside. I am looking for a way to solve this at FTP Server side. I have enabled

Re: selective logging of what pf is rejecting?

On Friday 09 September 2005 21:17, Huzeyfe Onal wrote: > hi, > you can use tcpdump to watch pf action, why it drop or accept packets. > > try to use > tcpdump -i pflog0 -e right. > ps: pflogd must be running... also read > http://www.openbsd.com/faq/pf/logging.html wrong. pflogd just records th

Re: selective logging of what pf is rejecting?

hi, you can use tcpdump to watch pf action, why it drop or accept packets. try to use tcpdump -i pflog0 -e ps: pflogd must be running... also read http://www.openbsd.com/faq/pf/logging.html 2005/9/9, bob self <[EMAIL PROTECTED]>: > > My pf.conf file looks something like this > > block in all

selective logging of what pf is rejecting?

My pf.conf file looks something like this block in all block out all pass quick on lo0 keep state antispoof for $ext_if pass in on $ext_if from to any keep state pass in log on $ext_if proto tcp from any to $ext_if port 80 flags S/SA keep state label "www"#apache block in on $ext_if

RE: Bugfixes from OpenBSD

I was looking for the changes in RELENG_5 so I wasn't at the right place. I'll try to test it but I'm short on time and hardware for testing but I'll give you feedback if I can. I'm not yet fully confident with FreeBSD development cycles and terminology but am I right if I think that 'MFCed' means