From owner-freebsd-pf@FreeBSD.ORG Fri Dec 19 13:26:31 2014 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id BD03E665 for ; Fri, 19 Dec 2014 13:26:31 +0000 (UTC) Received: from krichy.tvnetwork.hu (unknown [IPv6:2a01:be00:0:2::10]) by mx1.freebsd.org (Postfix) with ESMTP id 8301B1621 for ; Fri, 19 Dec 2014 13:26:31 +0000 (UTC) Received: by krichy.tvnetwork.hu (Postfix, from userid 1000) id 2BCB51B87; Fri, 19 Dec 2014 14:26:28 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by krichy.tvnetwork.hu (Postfix) with ESMTP id 282041B86 for ; Fri, 19 Dec 2014 14:26:28 +0100 (CET) Date: Fri, 19 Dec 2014 14:26:28 +0100 (CET) From: krichy@tvnetwork.hu To: freebsd-pf@freebsd.org Subject: simple setup Message-ID: User-Agent: Alpine 2.11 (DEB 23 2013-08-11) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; format=flowed; charset=US-ASCII X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Dec 2014 13:26:31 -0000 Dear pf gurus, I would need some help. I am trying to setup a synproxy state rule, without success. And unfortunately I dont know what am I doing wrong. The simple script is at http://pastebin.com/gmAUeKUR You will find that all block rules are commented out, but synproxy even does not work. I am trying to make a connection from the direction of re0 to a network on re2 port 22, the connection gets established on re0 side, but on re2 side it stalls. Any advice? Kojedzinszky Richard Euronet Magyarorszag Informatika Zrt.