Date: Fri, 27 Apr 2007 13:50:52 -0700 From: snowcrash <schneecrash+pf@gmail.com> To: "Jon Simola" <jsimola@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: why are pf-blocked ips 'leaking' thru to spamd? Message-ID: <70f41ba20704271350p7030e791ha67eb188de5fb383@mail.gmail.com> In-Reply-To: <8eea04080704271312w5f217a69ma46f65c0bc396933@mail.gmail.com> References: <70f41ba20704271105m11fa5315kc7c3d715f2d63f61@mail.gmail.com> <8eea04080704271127g70d910bfg82ec652a0c6889bf@mail.gmail.com> <70f41ba20704271143i962a7d3r821ddd34a4409f53@mail.gmail.com> <8eea04080704271154q4a714cdre3adc5c009e52d5c@mail.gmail.com> <70f41ba20704271209v12019809xabdebbf1adbc12d6@mail.gmail.com> <8eea04080704271312w5f217a69ma46f65c0bc396933@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> # echo "no rdr pass from <ip-black> to any" | pfctl -vvnf-
> stdin:1: "pass" not valid with "no"
that's a nifty way to check. thanks!
> Maybe you want to tag those packets and block them later:
>
> no rdr on em2 proto tcp from { <spamd>, !<ip-black> } to em2 port smtp
> tag BLOCKME
> ...
> block quick tagged BLOCKME
i'd gotten thru LABELs, but not to TAGs yet. excellent.
much easier that iptables! still keep tryin' to do things
bass-ackwards & the hard-way. ;-)
thanks for the help/education & hagw!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?70f41ba20704271350p7030e791ha67eb188de5fb383>