On Friday 02 March 2007 00:31, Tom Judge wrote:
> Hi,
>
> I was wondering if there is any way to trace packets as they pass
> through PF and possibly even the network stack. If someone could give
> me some pointers on this it would be greatly appreciated.
>
pass in on rl0 all label "incoming"
pas
Hi,
I was wondering if there is any way to trace packets as they pass
through PF and possibly even the network stack. If someone could give
me some pointers on this it would be greatly appreciated.
Tom
___
freebsd-pf@freebsd.org mailing list
http:
Is there a way to make pfctl ensure that a table exists before allowing
any rule to refer to it? For example, I found out I had a rule that
references table but I had only defined a table called , and didn't
realize I left off the d in the rule. does not exist, so the rule had
no function. I
On Wed, Feb 28, 2007 at 04:48:37PM -0300, Eduardo Meyer wrote:
> Translating to human lang, what I want is "look everywhere and match
> only packets with fin set but syn, rst and ack unset.
>
> How can I do the "unset" evaluation?
"flags F/FSRA" does precisely that. It is not the same as "flags
