From owner-freebsd-pf@FreeBSD.ORG Thu Jul 24 12:57:54 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B32E6106572C for ; Thu, 24 Jul 2008 12:57:54 +0000 (UTC) (envelope-from ivanatora@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.176]) by mx1.freebsd.org (Postfix) with ESMTP id 76A5C8FC22 for ; Thu, 24 Jul 2008 12:57:54 +0000 (UTC) (envelope-from ivanatora@gmail.com) Received: by py-out-1112.google.com with SMTP id p76so2071456pyb.10 for ; Thu, 24 Jul 2008 05:57:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=4l9nPg4/TsWZ8FOXhAmmK2xl7eIx+Q0rSbdgGrM7rUg=; b=Cbmsua2iiaAdUNniEJQAyiDc4E6+c4kdlY+vqsFFM+xNep21G3qD94qF0sINXu0WlD 5dY4tGT5y+MCCEiuyiavi9+GTQcn1W6O3ada48ABMhmymYZ2toshu7aV7lTzLbnY+M4G xQM8QLqQdils17qHjOgsFxlgxqwF0nqDtv2Os= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=fITvW2KLirnhL7+Smwvo0wI6m++X9xgzZa0pn1jq/cad4RQz2OZpsLmYqT2/PBqdIB 1BLFajplSzyp1O/LpWZCcGQ5bP1glr6cQWqf2I54hWzQEt+Up7ZxWB9N5NjjDzeIamCF b+E1k4mwog/ntFWeWMksiARoetYDNtmHcmQFs= Received: by 10.64.151.10 with SMTP id y10mr501295qbd.14.1216904273013; Thu, 24 Jul 2008 05:57:53 -0700 (PDT) Received: by 10.151.50.12 with HTTP; Thu, 24 Jul 2008 05:57:52 -0700 (PDT) Message-ID: Date: Thu, 24 Jul 2008 15:57:52 +0300 From: "Ivan Petrushev" To: "Thomas Rasmussen" In-Reply-To: <48879B35.1060905@gibfest.dk> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <48876DAD.9080100@optiksecurite.com> <488780A6.4010807@radel.com> <48879B35.1060905@gibfest.dk> Cc: freebsd-pf@freebsd.org Subject: Re: Why this rule doesn't score a match? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Jul 2008 12:57:54 -0000 Hello Thomas, I'm recieving an error: # ifconfig plog1 create ifconfig: SIOCIFCREATE2: Invalid argument and I can't see anything in 'man ifconfig' related to the pflog device. Regards, Ivan On Wed, Jul 23, 2008 at 11:57 PM, Thomas Rasmussen wrote: > Ivan Petrushev wrote: >> >> Hi Jon, >> Aaahhh, I see now - these FROM rules must be TO rules :D >> Thank you both for your replies. >> >> I'm going to monitor the outbond connections as well, but I think I >> will be OK then. This was the little stone in the shoe. >> I've already managed to let ICMP trough that 'block all' ;) >> >> Btw, I like the way pflog is working - deploying tcpdump on pflog0 and >> track down the logged packets. Is there a way to create another pflog >> device and use it for some different rules? I've seen there is an >> option to the 'log' keyword - (to pflogX), but I didn't managed to >> find out how to create more pflog devices. >> >> Regards, >> Ivan. >> > > Hello, > > To create another pflog interface do: > ifconfig pflog1 create > > And to create it at boot time add: > cloned_interfaces="pflog1" > to /etc/rc.conf > > Regards > > Thomas > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" >