DCE-RPC

2008-05-06 Thread Ansar Mohammed
Hello All, Does pf have any higher level application inspection capability such as RPC filtering based on UUID? ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECT

UDP weirdness

2008-05-07 Thread Ansar Mohammed
I have a very simple configuration yet I am bemused as to what I am doing wrong. Windows 2003<- FreeBSD-PF ->Windows 2003 192.168.3.2 192.168.3.1 192.168.2.2 192.168.2.130 Here are my rules ext_if="le0" int_if="le1" int_net="192.168.3.0/24" ext_ne

RE: UDP weirdness

2008-05-07 Thread Ansar Mohammed
TECTED] > Sent: May 7, 2008 1:54 PM > To: 'Ansar Mohammed'; freebsd-pf@freebsd.org > Subject: RE: UDP weirdness > > Try pass out proto udp from any to any port 53 > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:owner-freebsd- > > [E

RE: UDP weirdness

2008-05-07 Thread Ansar Mohammed
But I thought pf would be tracking state? Isnt that the whole point of statefull firewalls? > -Original Message- > From: Jille [mailto:[EMAIL PROTECTED] > Sent: May 7, 2008 4:50 PM > To: Ansar Mohammed > Cc: 'Kevin K'; freebsd-pf@freebsd.org > Subject: Re: UD

RE: UDP weirdness

2008-05-07 Thread Ansar Mohammed
state-policy to floating (which I believe is default) and still I need the second rule. > -Original Message- > From: Jeremy Chadwick [mailto:[EMAIL PROTECTED] > Sent: May 7, 2008 5:44 PM > To: Ansar Mohammed > Cc: 'Jille'; freebsd-pf@freebsd.org > Subject: Re: UD

pf + GeoIP

2008-05-12 Thread Ansar Mohammed
Hello All, Does anyone have any scripts on integrating pf with GeoIP? Is there an extension api? ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"

authpf win32 client

2008-05-13 Thread Ansar Mohammed
Is there a win32 "client" for authpf? A simple agent to sit in the tray where the user can login and logout without having to deploy a full ssh client? ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To uns

ALTQ and bandwidth limiting

2008-05-21 Thread Ansar Mohammed
Hello All, Is there a way using PF and ALTQ that I can set a policy to restrict a particular host to a maximum network speed? I would like to simulate low speed connection using pf. ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/ma

RE: ALTQ and bandwidth limiting

2008-05-21 Thread Ansar Mohammed
12:30 AM > To: Ansar Mohammed > Cc: freebsd-pf@freebsd.org > Subject: Re: ALTQ and bandwidth limiting > > On Wed, May 21, 2008 at 09:02:59PM -0400, Ansar Mohammed wrote: > > Hello All, > > > > Is there a way using PF and ALTQ that I can set a policy to restrict &g

authpf win32 client

2008-06-30 Thread Ansar Mohammed
Hello All, I am writing a small win32 tray icon client for authpf. If anyone is interested in assisting me with some testing can you please msg me offlist. ___ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To u

GRE Limitation

2008-07-17 Thread Ansar Mohammed
Hello All, I just read the following on the pfsense website: "PPTP and GRE Limitation - The state tracking code in pf for the GRE protocol can only track a single session per public IP per external server. This means if you use PPTP VPN connections, only one internal machine can connect simultaneo

RE: GRE Limitation

2008-07-17 Thread Ansar Mohammed
Is this like "a known bug" that's being fixed or is this "by design" and we have to deal with it? > -Original Message- > From: Chris Buechler [mailto:[EMAIL PROTECTED] > Sent: July 17, 2008 11:37 PM > To: Ansar Mohammed > Cc: freebsd-pf@freebsd.o