From owner-freebsd-pf@FreeBSD.ORG Sun Oct 28 20:57:12 2007 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 57CD516A41A for ; Sun, 28 Oct 2007 20:57:12 +0000 (UTC) (envelope-from wearabnet@yahoo.ca) Received: from web33706.mail.mud.yahoo.com (web33706.mail.mud.yahoo.com [68.142.201.203]) by mx1.freebsd.org (Postfix) with SMTP id 1A85613C480 for ; Sun, 28 Oct 2007 20:57:11 +0000 (UTC) (envelope-from wearabnet@yahoo.ca) Received: (qmail 7850 invoked by uid 60001); 28 Oct 2007 20:57:11 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.ca; h=X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:Cc:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=F7J9iBqcw7WmTzZ5FBvF86b/LxcdzXaGOXBDTgTfw/w3SSQwUvSMDlP7oTyNTg6qtees4b9Eu0NIgMr/cZTPC2RWOnDuca9EYwh6zOjgSVLHsMpYuQK7Nij+F8onOqQGQ1mpK6dd26kZqpwVIdLwUDOmBA0v6a5YJDzIDpWxNkk=; X-YMail-OSG: NAU4TzcVM1mqRJdUDApPnquBCWwsI.uZWX58L1gSSAc0RBZCAZFLq8lgKkB6jXHVFA-- Received: from [89.211.5.3] by web33706.mail.mud.yahoo.com via HTTP; Sun, 28 Oct 2007 13:57:11 PDT X-Mailer: YahooMailRC/814.06 YahooMailWebService/0.7.134.12 Date: Sun, 28 Oct 2007 13:57:11 -0700 (PDT) From: Abdullah Ibn Hamad Al-Marri To: Andrew Birukov , =?iso-8859-1?Q?Ermal_Lu=E7i?= MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Message-ID: <216439.6336.qm@web33706.mail.mud.yahoo.com> Cc: freebsd-stable@freebsd.org, freebsd-pf@freebsd.org Subject: Re: pf broken in 7.0-BETA1 ? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 28 Oct 2007 20:57:12 -0000 ----- Original Message ----=0A> From: Andrew Birukov =0A> = To: Ermal Lu=E7i =0A> Cc: freebsd-stable@freebsd.org;= freebsd-pf@freebsd.org=0A> Sent: Sunday, October 28, 2007 10:34:56 PM=0A> = Subject: Re: pf broken in 7.0-BETA1 ?=0A> =0A> Ermal Lu=E7i wrote:=0A> > Tr= y using=0A> > =0A> > pass out on $ext_if proto tcp from any to any tos 0x10= no keep=0A> state=0A> =0A queue ssh=0A> > =0A> > and it should work as you= expect!=0A> =0A> pf.conf=0A> ---------------------------------------------= ----------------------=0A> ext_if=3D"xl0"=0A> =0A> altq on $ext_if priq ban= dwidth 520Kb queue { ssh, traf }=0A> queue ssh priority 1=0A> queue traf p= riority 15 priq(default)=0A> =0A> pass in all=0A> pass out all=0A> =0A> pas= s out on $ext_if proto tcp from any to any tos 0x10 no keep state =0A> queu= e ssh=0A> -----------------------------------------------------------------= --=0A> =0A> # /etc/rc.d/pf restart=0A> Disabling pf.=0A> pf disabled=0A> En= abling pf.=0A> /etc/pf.conf:10: syntax error=0A> pfctl: Syntax error in con= fig file: pf rules not loaded=0A> pf enabled=0A> =0A> Unfortunately syntax = error...=0A> =0A> =0A> -- =0A> Andrew Biriukov=0A> amb@amb.kiev.ua=0A=0A=0A= Is this related to your problem?=0A=0Ahttp://www.nabble.com/Suggestion-with= -patch%2C-change-PF-TOS-matching-to-bitmask-tf4697797.html=0A=0A=0A-- =0ARe= gards, =0A-Abdullah Ibn Hamad Al-Marri=0AArab Portal=0Ahttp://www.WeArab.Ne= t/=0A=0A =0A=0A=0A=0A__________________________________________________=0AD= o You Yahoo!?=0ATired of spam? Yahoo! Mail has the best spam protection ar= ound =0Ahttp://mail.yahoo.com