Hello. I have a freebsd router with freebsd and pf.
In my pf.conf, I have block-by-default rule and after it, something like
this:
block all
pass in on $if_int from $net_int to any
pass out on $if_ext from $net_int to any
When there is, for example some idle ssh connection, pf stops tracking
it
On Wed, Aug 04, 2010 at 08:45:42AM +0600, Rushan R. Shaymardanov wrote:
> When there is, for example some idle ssh connection, pf stops tracking
> it in its states table after some period of inactivity (I don't see it
> in pfctl -ss). So, packets are blocked my default block rule and my
> connecti
