From owner-freebsd-security@FreeBSD.ORG  Fri Jan 22 16:22:52 2010
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id F274210656C0
	for <freebsd-security@freebsd.org>;
	Fri, 22 Jan 2010 16:22:52 +0000 (UTC) (envelope-from kalin@el.net)
Received: from mail.el.net (mail.el.net [74.1.12.120])
	by mx1.freebsd.org (Postfix) with ESMTP id 440518FC12
	for <freebsd-security@freebsd.org>;
	Fri, 22 Jan 2010 16:22:52 +0000 (UTC)
Received: (qmail 82801 invoked by uid 1008); 22 Jan 2010 17:38:46 -0000
Received: from unknown (HELO kalins-macbook-pro.local)
	(kalin@el.net@24.193.246.51)
	by mail.el.net with ESMTPA; 22 Jan 2010 17:38:46 -0000
Message-ID: <4B59D0DB.20509@el.net>
Date: Fri, 22 Jan 2010 11:22:51 -0500
From: kalin m <kalin@el.net>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: Patrick Proniewski <patpro@patpro.net>
References: <4B5958E2.9010509@el.net>
	<04C950BC-79D6-40FF-81CA-75A10A817DE6@patpro.net>
In-Reply-To: <04C950BC-79D6-40FF-81CA-75A10A817DE6@patpro.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-security@freebsd.org
Subject: Re: pf rules
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jan 2010 16:22:53 -0000



yea..  all shows a lot...  which part would you like to see? i just sent 
out the current rules out to the list...


Patrick Proniewski wrote:
> On 22 janv. 10, at 08:50, kalin m wrote:
>
>> how is it possible that if i have these rules below in pf.conf if i do:
>> telnet that.host.org 25
>>
>> i get:
>> Trying xx.xx.xx.xx...
>> Connected to that.host.org.
>> Escape character is '^]'.
>> ........... etc .......
>
>
> quite strange.
>
> What does `pfctl -s all` return?
>
> patpro