From owner-freebsd-questions@FreeBSD.ORG  Sun Sep 26 11:51:52 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 7132B1065672
	for <freebsd-questions@freebsd.org>;
	Sun, 26 Sep 2010 11:51:52 +0000 (UTC)
	(envelope-from faust64@gmail.com)
Received: from mail-qy0-f175.google.com (mail-qy0-f175.google.com
	[209.85.216.175])
	by mx1.freebsd.org (Postfix) with ESMTP id 24D258FC17
	for <freebsd-questions@freebsd.org>;
	Sun, 26 Sep 2010 11:51:51 +0000 (UTC)
Received: by qyk34 with SMTP id 34so759049qyk.13
	for <multiple recipients>; Sun, 26 Sep 2010 04:51:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:mime-version:received:from:date
	:message-id:subject:to:content-type;
	bh=qg0OGc6BdaNp8xa5K7ZNnMhEZ0iLqCg8op17eUeka44=;
	b=PP3I423RP9971UrtmMmY4gwPY2qIdXp4BVuxZeiOfsc5yD7qed4tAwqj5g1W2tfHwT
	/X1YwqOz1xutkhxnjuaffjY7pEOjHR7Ps7kKfZhvbJ0CdaUnjVZaN/qpgVY53cjUYaDO
	3h0bMtflW+7yYQhG5J0hz2RXLxAJmalLkxkeI=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:from:date:message-id:subject:to:content-type;
	b=ZlQfEL150IERcdIWpO9rJKgpLnfiM+gqqlB2sCqjLILY4XUxf8uaVrLi9ZdyD6S214
	nHU9J3Nll5IlM/gU5tUfMEYv1PopCU68Mk8P5gDz7IWjWAVm9UM+H8tqdtiQvEXcY3FN
	KuACp7c+zjItx2erfWfo/se6mbpkZFHvVk+CY=
Received: by 10.224.72.2 with SMTP id k2mr4277426qaj.242.1285501911092; Sun,
	26 Sep 2010 04:51:51 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.229.187.212 with HTTP; Sun, 26 Sep 2010 04:51:20 -0700 (PDT)
From: =?ISO-8859-1?Q?Samuel_Mart=EDn_Moro?= <faust64@gmail.com>
Date: Sun, 26 Sep 2010 13:51:20 +0200
Message-ID: <AANLkTingNA5V4b9UdE_Yotqtuy1RMx190phMzn5UrMdi@mail.gmail.com>
To: freebsd-questions@freebsd.org, freebsd-hackers@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: 
Subject: pf
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Sep 2010 11:51:52 -0000

Hello,


I'm trying to set up pf on my soon-to-be new gateway (8.1-RELEASE amd64).
I used the sample configuration file available on
calomel<https://calomel.org/pf_config.html>
After a few tests, it appears that the gate has fully access to the
internet, but I can't open connections from clients to distant servers (web=
,
ssh, ...).
Checking pflog log file, I can't see anything about those timeouts, even if
I added the log directive in every block/pass command.
Everything else seems to work, I can talk with my DNS from the internet, ss=
h
redirections to another pc also seems to works.
I just can't access the Internet from a client of my network...

For debugging, I commented out the options and the 'block all in/out'
directives.

Here's my config file http://pastebin.com/Nim2zBCx

Is there someone understanding what I'm doing wrong?



Thanks for your help!

Regards,


Samuel Mart=EDn Moro
{EPITECH.} tek5