From owner-freebsd-questions@FreeBSD.ORG  Fri Feb 18 02:17:31 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 599FA16A4CE
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Feb 2005 02:17:31 +0000 (GMT)
Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.202])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D06BA43D31
	for <freebsd-questions@freebsd.org>;
	Fri, 18 Feb 2005 02:17:30 +0000 (GMT)
	(envelope-from j65nko@gmail.com)
Received: by wproxy.gmail.com with SMTP id 69so366311wra
	for <freebsd-questions@freebsd.org>;
	Thu, 17 Feb 2005 18:17:30 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
	s=beta; d=gmail.com;
	h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references;
	b=LhfjBYlZ0SL52g2KTL6mBLR6nYcuod3L3p0d5AG35iJolHlLPEhp/LBCn/SZJhOsmMkb10r3swW/UT5lOEwRrSksa37L8xs3xlc63NloTVHYgyqh3dXQpd1VDkWHOPbMc+QaQrvbH97679qWT/L68389vHJLKqb+ufT4SjZkJNs=
Received: by 10.54.41.71 with SMTP id o71mr225636wro;
        Thu, 17 Feb 2005 18:17:30 -0800 (PST)
Received: by 10.54.37.16 with HTTP; Thu, 17 Feb 2005 18:17:30 -0800 (PST)
Message-ID: <19861fba0502171817512ee8bd@mail.gmail.com>
Date: Fri, 18 Feb 2005 03:17:30 +0100
From: J65nko BSD <j65nko@gmail.com>
To: freebsd-questions@freebsd.org
In-Reply-To: <810a540e05021618183355fc82@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
References: <810a540e050214203221952797@mail.gmail.com>
	 <64a8ad9805021420444eb3ccd2@mail.gmail.com>
	 <810a540e05021420555412f1b0@mail.gmail.com>
	 <42133BFD.1090004@ps102.de>
	 <810a540e05021618183355fc82@mail.gmail.com>
Subject: Re: Configuring PF
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: J65nko BSD <j65nko@gmail.com>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Feb 2005 02:17:31 -0000

On Wed, 16 Feb 2005 19:18:17 -0700, Pat Maddox <pergesu@gmail.com> wrote:
> I've managed to come up with something that works so far.  I am having
> two problems though.
> 
> The first is that I can't authenticate for IMAP anymore.  No clue why,
> it just keeps rejecting my password.  maillog shows imapd: LOGIN
> FAILED, that's it.
> 
> Also, after enabling pf, all my UDP ports show as open.  I've got a ruleset of
> block in log on $ext_if proto udp all
> 
> So all UDP ports should be shown as closed.  Doesn't really make any
> sense to me.  Anyone care to help?
> 
> Thanks for the help so far.
> 
> Pat

Start with a default policy to block and log all traffic 

# --- default policy
block log from any to any

Now you only have to open ports to let traffic in. If you don't know
which port to open for a certain protocol, you can run "tcpdump -eni
pfl0g". tcpdump will show which rule blocked, and on which port
address combination.

=Adriaan=