From owner-freebsd-pf@FreeBSD.ORG Fri Apr 27 18:54:53 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id DD55D16A403 for ; Fri, 27 Apr 2007 18:54:53 +0000 (UTC) (envelope-from jsimola@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.241]) by mx1.freebsd.org (Postfix) with ESMTP id 99C9013C44B for ; Fri, 27 Apr 2007 18:54:53 +0000 (UTC) (envelope-from jsimola@gmail.com) Received: by an-out-0708.google.com with SMTP id c24so732024ana for ; Fri, 27 Apr 2007 11:54:53 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=CHupZDodeGX1BRk3Ci2VD6EnGoeugYbOahxGsYEF8O+1aYHrJJ8QbSy2X/Z+cAScs41P2rcoRNiUcZZArTWR3fN4a99LL5kF4f91rVl2fG/Jb3G9aNEJonEFAWYdOiIQKyp1SIRZrRSPR6rOFHKCrtsp9HToFXtdwum4Sb31r8k= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Ruozawke+EopUYbIbsMiCJh/LdmuNv02ia3Y0J0kVE6U0Ui7xeZ7WyslwzwFJxfS8m5yDKqbuhF7+4QAa+C5E3nKUiU+gblS7L7iVwVwL7XgxhKJ3ntn6DjXlcoyW6TgTjhFV/oiOR50aydryCQvG2T/Z12v6Hx5Dxad6Dnid5I= Received: by 10.100.247.11 with SMTP id u11mr2285422anh.1177700092687; Fri, 27 Apr 2007 11:54:52 -0700 (PDT) Received: by 10.100.38.4 with HTTP; Fri, 27 Apr 2007 11:54:52 -0700 (PDT) Message-ID: <8eea04080704271154q4a714cdre3adc5c009e52d5c@mail.gmail.com> Date: Fri, 27 Apr 2007 11:54:52 -0700 From: "Jon Simola" To: freebsd-pf@freebsd.org In-Reply-To: <70f41ba20704271143i962a7d3r821ddd34a4409f53@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <70f41ba20704271105m11fa5315kc7c3d715f2d63f61@mail.gmail.com> <8eea04080704271127g70d910bfg82ec652a0c6889bf@mail.gmail.com> <70f41ba20704271143i962a7d3r821ddd34a4409f53@mail.gmail.com> Subject: Re: why are pf-blocked ips 'leaking' thru to spamd? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Apr 2007 18:54:54 -0000 On 4/27/07, snowcrash wrote: > > Multiple tables in rules are tricky because they are not treated as > > "sets" that can be arbitrarily compared (ie, IPs in table A that are > > not in table B). > so, *IS* there a way to accomplish that? namely, match against a > boolean-composite of tables? On OpenBSD, I use spamd-setup which does exactly that with the whitelist/blacklist tables. One could probably hack up a cron-able sed/awk/perl thingy to read from 2 tables, mash up the contents however you wish, and fill a 3rd table with the result. -- Jon