Date: Sun, 09 Nov 2008 14:58:18 -0600 From: Eric Williams <purpleshadow100@gmail.com> To: David DeSimone <fox@verio.net> Cc: freebsd-pf@freebsd.org Subject: Re: Blocking udp flood trafiic using pf, hints welcome Message-ID: <49174EEA.2040609@gmail.com> In-Reply-To: <20081109200659.GA8477@verio.net> References: <1814bfe70811090137v39cd6434l49b545eb3b6eb88c@mail.gmail.com> <20081109112125.GA36707@icarus.home.lan> <1814bfe70811090544o28c29c5u185e3c0f2b8e85b4@mail.gmail.com> <20081109200659.GA8477@verio.net>
next in thread | previous in thread | raw e-mail | index | archive | help
David DeSimone wrote: > You may want to consider adding "keep state" to your "block log" rules. > If you keep state on the blocked packets, only the first packet that is > blocked will get logged; the others will be blocked statefully without > consulting the rulebase, which may save some processing time. > > Note that "keep state" is only implicit on "pass" rules, you must add it > on "block" rules Doesn't seem to work, it just gives "keep state on block rules doesn't make sense" as an error.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49174EEA.2040609>