From owner-freebsd-questions@FreeBSD.ORG Sat Mar 8 11:19:26 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D0E331065677 for ; Sat, 8 Mar 2008 11:19:26 +0000 (UTC) (envelope-from alaorneto@gmail.com) Received: from rv-out-0910.google.com (rv-out-0910.google.com [209.85.198.190]) by mx1.freebsd.org (Postfix) with ESMTP id 9D5EF8FC20 for ; Sat, 8 Mar 2008 11:19:26 +0000 (UTC) (envelope-from alaorneto@gmail.com) Received: by rv-out-0910.google.com with SMTP id g13so621145rvb.43 for ; Sat, 08 Mar 2008 03:19:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; bh=/7+bibd1RHI/BSldyC488FN6/3UFil7oGAq/v/ihLQw=; b=AHBfaQaqJfInpj3lbkXEnTMcrumaoqLFLnKqGAxjkZxFRwxqHnojRP0wAYBNc921YpD8Enikj+/ikxwqoDhwmVyY90cyBjMBcA1aZ4crTVzobmv0X9jgzNdA6WoRN1thim3qUlOxU72+QLJEoW7wvSZ2X4JYQ5NSf5EcM91+pow= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=wd+tL7gZkJoCWIxwltUVGJl0tcOhj0v3c0cwsODZciNlYRizUBONK55Ctm4LcWI74JG1va6UXV36vf3hiI5xWP2t3Zm8eTWzYRvmnQJJDNNILcDFQYqW1tWAhYPOlvQxpnbASBkY1fdg8cjdI0A8qj1NBlmSk+MKXTcMn45yHxY= Received: by 10.141.132.8 with SMTP id j8mr1690828rvn.167.1204975166176; Sat, 08 Mar 2008 03:19:26 -0800 (PST) Received: by 10.114.235.15 with HTTP; Sat, 8 Mar 2008 03:19:26 -0800 (PST) Message-ID: <2949641c0803080319i130b3ee9w95664e644d73572c@mail.gmail.com> Date: Sat, 8 Mar 2008 08:19:26 -0300 From: "Alaor Barroso de Carvalho Neto" To: "Preston Hagar" In-Reply-To: <8f5897560803071137k5be64b92j2a2de604661cb83e@mail.gmail.com> MIME-Version: 1.0 References: <2949641c0803060554q2ecba5e7g7920bf0b252277c9@mail.gmail.com> <47D00412.40803@locolomo.org> <2949641c0803061002t1861694ajb5ce75559a23bc33@mail.gmail.com> <8f5897560803071137k5be64b92j2a2de604661cb83e@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: Please help me with my PF config X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 08 Mar 2008 11:19:26 -0000 2008/3/7, Preston Hagar : > > It looks like you already have your problem solved. One utility you > might want to look at is pftop. With it, you can see pretty much in > real time what is going through pf and what is being blocked. This > has helped me a lot to find out which rule in blocking something I > need to let through. If you run pftop, then hit the right arrow key, > it will have the rule that is being applied for a given connection on > the far right-hand side. If you hit SHIFT+S it will order the > connections by source ip to help you find what you are looking for. > Once you have the rule number that is blocking the connection you need > to let through, hit the right arrow 4 more times to see the list of > rules and their corresponding numbers. > > It may or may not be of much use to you, but I have found pftop to be > indispensable when setting up pf firewalls. > > Preston > It looks great. I was looking for something like this because I would like to see what is happening in the network. I'm gonna install this on monday. Thankz for the tip. Hugs, Alaor Neto.