From owner-freebsd-stable@FreeBSD.ORG  Sun Jul 15 11:06:21 2007
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 662F116A402
	for <freebsd-stable@freebsd.org>; Sun, 15 Jul 2007 11:06:21 +0000 (UTC)
	(envelope-from adler@smtp.ru)
Received: from smtp1.pochta.ru (smtp1.pochta.ru [81.211.64.6])
	by mx1.freebsd.org (Postfix) with ESMTP id 21D4913C48E
	for <freebsd-stable@freebsd.org>; Sun, 15 Jul 2007 11:06:20 +0000 (UTC)
	(envelope-from adler@smtp.ru)
Received: from [77.243.97.74] (helo=suntechnic.mshome.net)
	by smtp.pochta.ru ( sendmail 8.13.3/8.13.1) with esmtpa id
	1IA1vd-0005Gy-9j; Sun, 15 Jul 2007 15:06:17 +0400
Date: Sun, 15 Jul 2007 15:06:12 +0400
From: Alexey Sopov <adler@smtp.ru>
X-Mailer: The Bat! (v3.5) Professional
X-Priority: 3 (Normal)
Message-ID: <9410643601.20070715150612@smtp.ru>
To: Edward Carrel <edward@carrel.org>
In-Reply-To: <93EA7502-1E14-464F-BD54-D9D7F17BD844@carrel.org>
References: <241432407.20070712131014@smtp.ru>
	<d5992baf0707120856n31c0480aw6209be33820e3e30@mail.gmail.com>
	<1626939090.20070713131733@smtp.ru>
	<93EA7502-1E14-464F-BD54-D9D7F17BD844@carrel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Cc: freebsd-stable@freebsd.org
Subject: Re[4]: Seems like pf skips some packets.
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: adler <adler@smtp.ru>
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Jul 2007 11:06:21 -0000


>> Setting are loaded in pf via /etc/rc.d/pf start
>>
>> Why do these things differ?

EC> These are the timeout settings for "set optimization aggressive". If
EC> it appears after your set timeout lines, then it will take  
EC> precedence. If this doesn't appear within your pf.conf, then this
EC> probably isn't the pf config file it's loading. If so, that may  
EC> explain your issue with the unblocked packets as well.

Right. I've changed back to "set optimization normal" and now settings
from file and in pf match.

There are still unblocked packets.

Provider asked me to block them, else he will block whole my network
:(


-- 
                            mailto:adler@smtp.ru