From owner-freebsd-pf@FreeBSD.ORG Fri Apr 27 20:12:08 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id DB21616A402 for ; Fri, 27 Apr 2007 20:12:08 +0000 (UTC) (envelope-from jsimola@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.246]) by mx1.freebsd.org (Postfix) with ESMTP id 936D213C465 for ; Fri, 27 Apr 2007 20:12:08 +0000 (UTC) (envelope-from jsimola@gmail.com) Received: by an-out-0708.google.com with SMTP id c24so754146ana for ; Fri, 27 Apr 2007 13:12:07 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VUi/YgTdbBqkSPrFgcAdf1gS32A/EBP81ten5KLthnpenG9yetYsM+9t49hrTrthu+VRtcjZOrNppYp2J1G+qKsjidWP3I7rvGRR5ltIH0XW/ZRXJPsTF2S9EJ+gO2e0K5wjk8tnZOiwb+DAV1CXKpNaQv9w4140kelt0bV6978= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=sTAWMjG5Yh3Csvl3bE53zRDO0NvuoSYXSTNEHW5koNy60mkNA/tK0sr2cSmr7MdORobPPtJI46My0ogWgormVuqxmybJtYSSd0CozYLBOsBvAqIGf51OffJ+s6csCdVqpazZGV5Qsa2BvbyefKtkkKfi3GzFmaq6C78s2zSSMXg= Received: by 10.100.5.17 with SMTP id 17mr2345577ane.1177704727685; Fri, 27 Apr 2007 13:12:07 -0700 (PDT) Received: by 10.100.38.4 with HTTP; Fri, 27 Apr 2007 13:12:07 -0700 (PDT) Message-ID: <8eea04080704271312w5f217a69ma46f65c0bc396933@mail.gmail.com> Date: Fri, 27 Apr 2007 13:12:07 -0700 From: "Jon Simola" To: freebsd-pf@freebsd.org In-Reply-To: <70f41ba20704271209v12019809xabdebbf1adbc12d6@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <70f41ba20704271105m11fa5315kc7c3d715f2d63f61@mail.gmail.com> <8eea04080704271127g70d910bfg82ec652a0c6889bf@mail.gmail.com> <70f41ba20704271143i962a7d3r821ddd34a4409f53@mail.gmail.com> <8eea04080704271154q4a714cdre3adc5c009e52d5c@mail.gmail.com> <70f41ba20704271209v12019809xabdebbf1adbc12d6@mail.gmail.com> Subject: Re: why are pf-blocked ips 'leaking' thru to spamd? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Apr 2007 20:12:08 -0000 On 4/27/07, snowcrash wrote: > no rdr pass from to any # echo "no rdr pass from to any" | pfctl -vvnf- stdin:1: "pass" not valid with "no" Maybe you want to tag those packets and block them later: no rdr on em2 proto tcp from { , ! } to em2 port smtp tag BLOCKME ... block quick tagged BLOCKME -- Jon