Date: Thu, 13 Dec 2007 16:03:08 -0600 From: Erik Osterholm <freebsd-lists-erik@erikosterholm.org> To: Alaor Barroso de Carvalho Neto <alaorneto@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: PF blocking even if set to pass all Message-ID: <20071213220308.GA78516@aleph.cepheid.org> In-Reply-To: <2949641c0712130319p3da37aeci92987c64516dabef@mail.gmail.com> References: <2949641c0712130319p3da37aeci92987c64516dabef@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Dec 13, 2007 at 09:19:03AM -0200, Alaor Barroso de Carvalho Neto wrote: > Hi guyz, like I've said in other topic, I'm building a BSD box that'll act > as a gateway between three private networks and the internet. I want that > each private network can ping to each other, and I can do that till I > activate my pf firewall. When I do pfctl -e it stop working. > > The output of pfctl -sr is: > pass in all > pass out all > > So I guess it would pass anything, why it isn't happening? > > Hugs, > Alaor You aren't doing any encapsulation or anything else unusual, are you? Note that unless you specificy a protocol, pass rules will only match tcp, udp, or icmp (or the v6 equivalents, I believe.) Erik
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071213220308.GA78516>