Date: Fri, 28 Jan 2011 09:47:23 +0000 From: Greg Hennessy <Greg.Hennessy@nviz.net> To: "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org> Subject: RE: why "block quick on wlan0" doesn't stop DHCP? Message-ID: <9E8D76EC267C9444AC737F649CBBAD9027BC4023C4@PEMEXMBXVS02.jellyfishnet.co.uk.local> In-Reply-To: <4D428A38.8000609@gmail.com> References: <4D428A38.8000609@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Could be talking complete nonsense here, but.... IIRC BPF sees all traffic before PF. DHCP hooks at the BPF layer, so it'll be serviced before any filtering policy applies. Greg > -----Original Message----- > From: owner-freebsd-pf@freebsd.org [mailto:owner-freebsd- > pf@freebsd.org] On Behalf Of Michael > Sent: 28 January 2011 9:20 AM > To: freebsd-pf@freebsd.org > Subject: why "block quick on wlan0" doesn't stop DHCP? > > Hello, > > Here is my simple rule set: > > set loginterface wlan0 > block log > block quick on wlan0 > > Now I'm booting my 8.1-R box. After it's up and running with pf I'm > powering on my wireless access point. > > After couple seconds my wlan0 is associated and receives it's IP > address. I don't understand why was it not stopped by pf? > And how can I tune my rules to be able to control DHCP conversation? > > Michael > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9E8D76EC267C9444AC737F649CBBAD9027BC4023C4>