?
This would be one of those things that is obvious once you've seen an example
and thought about it for a while.
$sudo pfctl -si |grep -A1 State
State Table Total Rate
current entries 34056
$sudo pfctl -i vlan170 -ss |wc -l
1172
der the word "operation" ?
>
> This would be one of those things that is obvious once you've seen an example
> and thought about it for a while.
>
> $sudo pfctl -si |grep -A1 State
> State Table Total Rate
> current entri
us once you've seen an example
and thought about it for a while.
$sudo pfctl -si |grep -A1 State
State Table Total Rate
current entries 34056
$sudo pfctl -i vlan170 -ss |wc -l
1172
In this case, only show states bound to the vlan170 i
doesn't
affect anything outside the jail ( which is bound to a specific ip on a
seperate interface )
I tried loading pfctl -i lo1 -f test.fire which contained "block quick
all" ..which promptly killed everything :/
And no, it's not about using the loopback interface.. same goes f
