From owner-freebsd-pf@FreeBSD.ORG Wed Aug 20 14:27:41 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4C6EC10656D9 for ; Wed, 20 Aug 2008 14:27:41 +0000 (UTC) (envelope-from leslie@eskk.nu) Received: from hawk.thalamus.net (hawk.thalamus.net [212.31.160.3]) by mx1.freebsd.org (Postfix) with ESMTP id 079958FC1E for ; Wed, 20 Aug 2008 14:27:40 +0000 (UTC) (envelope-from leslie@eskk.nu) Received: from localhost (localhost.thalamus.net [127.0.0.1]) by hawk.thalamus.net (Postfix) with ESMTP id 930971EE8E1 for ; Wed, 20 Aug 2008 16:13:11 +0200 (CEST) X-Virus-Scanned: by amavisd-new at thalamus.net X-Spam-Flag: NO X-Spam-Score: 2.336 X-Spam-Level: ** X-Spam-Status: No, score=2.336 tagged_above=-999 required=4.2 tests=[AWL=-0.833, HELO_LH_HOME=3.169] Received: from hawk.thalamus.net ([127.0.0.1]) by localhost (hawk.thalamus.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C8Y2Q29pyOp9 for ; Wed, 20 Aug 2008 16:12:57 +0200 (CEST) Received: from lesbsdpc.homenet.home (c-195-216-040-164.static.bjare.net [195.216.40.164]) by hawk.thalamus.net (Postfix) with ESMTP id C735A1EE912 for ; Wed, 20 Aug 2008 16:12:57 +0200 (CEST) Message-ID: <48AC266D.2030902@eskk.nu> Date: Wed, 20 Aug 2008 16:13:01 +0200 From: Leslie Jensen User-Agent: Thunderbird 2.0.0.16 (X11/20080729) MIME-Version: 1.0 To: freebsd-pf@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: port stealth mode? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Aug 2008 14:27:41 -0000 Hello I've done some testing with Steve Gibsons "Shields up" https://www.grc.com/x/ne.dll?bh0bkyd2 These tests lists the ports as closed but visible. Instead the site suggest that one uses stealth so that the ports are not visible from the Internet. Is there a way to achieve this with PF? Thanks Leslie