Hi,
On OpenBSD, a tcpdump of the pflog can show the pid for locally
generated traffic. PFLOG(4) sugggests FreeBSD's pflog also records this
information. Is that the case? Can FreeBSD's tcpdump show this
information?
I see a similar question from 2008, but no response.
https://lists.freebsd.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Run tcpdump -vvve -i pflog0 ??? on a FreeBSD machine ?
Should yield your answer. This isn’t necessarily something to do with
tcpdump(8) than it is for the inclusion of pf(4) into the FreeBSD kernel.
Specific versions of tcpdump(8) and configured o
Jason Hellenthal writes:
> Run tcpdump -vvve -i pflog0 ??? on a FreeBSD machine ?
> Should yield your answer. This isn’t necessarily something to do with
> tcpdump(8) than it is for the inclusion of pf(4) into the FreeBSD
> kernel. Specific versions of tcpdump(8) and configured options might
> yi
nvass-gmx.com added a comment.
>>! In D1944#11, @kristof wrote:
> Don't we still need to do all of this somewhere?
>>! In D1944#11, @kristof wrote:
> Don't we still need to do all of this somewhere?
INLINE COMMENTS
sys/netpfil/pf/pf_ioctl.c:325 pf_unload is called before pf_vnet_unit, this
