From owner-freebsd-hackers@FreeBSD.ORG  Fri May  9 12:55:24 2008
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 731AF1065671
	for <freebsd-hackers@freebsd.org>; Fri,  9 May 2008 12:55:24 +0000 (UTC)
	(envelope-from viaprog@gmail.com)
Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.181])
	by mx1.freebsd.org (Postfix) with ESMTP id 4880A8FC0A
	for <freebsd-hackers@freebsd.org>; Fri,  9 May 2008 12:55:24 +0000 (UTC)
	(envelope-from viaprog@gmail.com)
Received: by wa-out-1112.google.com with SMTP id j4so1556681wah.3
	for <freebsd-hackers@freebsd.org>; Fri, 09 May 2008 05:55:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	bh=D6Di//LGyWrw0wsDoBqQu1MAMK25dt6DB7p06VILVSo=;
	b=A+eFbeA+ITki67qHkKkpx6gJnqztOvdE/WaHfwpLDuR9WEcoQG986k43bVDWhqz63bWwrh4JGRUFosmKNa1dRJbajdXV+Wgca7cGfZmJtzr1tatlV6z9TtA+lqXgblYoVeCREIGO/s1sWqIZR9lyWiudhTDSeGDih1Nd+XV/Os0=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	b=Vwj2nU53G4eR0Y1FBEya5RXQYHVr7fCf5OVXggWz5zLo2Thd4dztkCfpZl3n5d4X1pMZHDDeSe0luhfmTvj9yWnlpbnwgpOZ/Y7LpQ2QkRwDXxPdKLG8ACk0xxOAGPOn42vk/GakeLnmiaZW54yOeZNlp7ZAEY16AlT0QvX5Qzc=
Received: by 10.114.182.1 with SMTP id e1mr4163974waf.154.1210337724057;
	Fri, 09 May 2008 05:55:24 -0700 (PDT)
Received: by 10.114.170.15 with HTTP; Fri, 9 May 2008 05:55:23 -0700 (PDT)
Message-ID: <bde600590805090555u4554855cib5d629140a874c0d@mail.gmail.com>
Date: Fri, 9 May 2008 16:55:23 +0400
From: "Igor A. Valcov" <viaprog@gmail.com>
To: freebsd-hackers@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Subject: do not work nested unnamed anchor
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 09 May 2008 12:55:24 -0000

Hello.

For example:

==== pf.conf ====

ext_if="xl0"
ip_world="nn.nn.nn.nn"

# Filter rules
block log all

anchor in on $ext_if {
       pass quick proto tcp to $ip_world port 22 keep state
            # SSH
       pass quick proto tcp to $ip_world port 25 keep state
            # SMTP
       pass quick proto tcp to $ip_world port 110 keep state
            # POP3
       anchor  {
           pass quick proto tcp to $ip_world port 995 keep state
            # POP3S
       }
}

============

nmap results:

PORT    STATE SERVICE VERSION
22/tcp  open  ssh     OpenSSH 4.5p1 (FreeBSD 20061110; protocol 2.0)
25/tcp  open  smtp?
110/tcp open  pop3    Openwall popa3d


I can not understand what the problem...

FreeBSD-7.0-RELEASE-p1
i386

-- 
Igor A. Valcov