Date: Sat, 11 Mar 2006 09:37:56 -0000 From: "Greg Hennessy" <Greg.Hennessy@nviz.net> To: "'Jacob, Raymond A Jr'" <raymond.jacob@navy.mil>, <freebsd-pf@freebsd.org> Subject: RE: Two(2) questions regarding quick and adding rules later. Message-ID: <000001c644ef$7ac4ace0$0301a8c0@vaio> In-Reply-To: <653C8E7D21FB654997909E77C691053F446ADB@NAEAWNYDEX21VA.nadsusea.nads.navy.mil>
index | next in thread | previous in thread | raw e-mail
> > All traffic blocked unless I use quick. > tcpdump -n -e -ttt -r /var/log/pflog > showed traffic was blocked by the last rule unless I added > quick to pass rules. > I thought the matching rules would have overiden the block rule? If you don't use quick , the last matching rule wins. Make the very 1st rule block log all And delete any non specific blocks further down. Greghome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000001c644ef$7ac4ace0$0301a8c0>