Date: Fri, 18 Feb 2005 03:17:30 +0100 From: J65nko BSD <j65nko@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: Configuring PF Message-ID: <19861fba0502171817512ee8bd@mail.gmail.com> In-Reply-To: <810a540e05021618183355fc82@mail.gmail.com> References: <810a540e050214203221952797@mail.gmail.com> <64a8ad9805021420444eb3ccd2@mail.gmail.com> <810a540e05021420555412f1b0@mail.gmail.com> <42133BFD.1090004@ps102.de> <810a540e05021618183355fc82@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 16 Feb 2005 19:18:17 -0700, Pat Maddox <pergesu@gmail.com> wrote: > I've managed to come up with something that works so far. I am having > two problems though. > > The first is that I can't authenticate for IMAP anymore. No clue why, > it just keeps rejecting my password. maillog shows imapd: LOGIN > FAILED, that's it. > > Also, after enabling pf, all my UDP ports show as open. I've got a ruleset of > block in log on $ext_if proto udp all > > So all UDP ports should be shown as closed. Doesn't really make any > sense to me. Anyone care to help? > > Thanks for the help so far. > > Pat Start with a default policy to block and log all traffic # --- default policy block log from any to any Now you only have to open ports to let traffic in. If you don't know which port to open for a certain protocol, you can run "tcpdump -eni pfl0g". tcpdump will show which rule blocked, and on which port address combination. =Adriaan=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19861fba0502171817512ee8bd>