On Mon, Jul 30, 2007 at 05:46:34AM -0700, Juhani wrote:
> As far as I undrestood from the kernel source glimpse the <- and -> in
> pfctl -ss mean PF_IN and PF_OUT. So although you have not limited the rules
> to a specific interface there happens something similar to tcp "src" and
> "dst" ports ge
all and filter only
on pass in (that means you trust what is already inside). At the present
moment I am unable to check that idea for flaws, I would go that way.
Juhani
--
View this message in context:
http://www.nabble.com/how-to-confirm-i-am-gaining-advantage-from-floating-state-policy-tf
Hallo!
I am in the middle of re-reading firewall's pf rules and trying to set
them up more like OpenBSD's way but it seems that i cant figure out on
my own the meaning of state-policy though i read serveral times manual
and searched also list archive.
In a test environment i have following setup
3 matches
Mail list logo
