From owner-freebsd-security@FreeBSD.ORG  Fri Jan 22 16:23:21 2010
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5F0D210656C3
	for <freebsd-security@freebsd.org>;
	Fri, 22 Jan 2010 16:23:21 +0000 (UTC) (envelope-from kalin@el.net)
Received: from mail.el.net (mail.el.net [74.1.12.120])
	by mx1.freebsd.org (Postfix) with ESMTP id CE2FB8FC17
	for <freebsd-security@freebsd.org>;
	Fri, 22 Jan 2010 16:23:20 +0000 (UTC)
Received: (qmail 82869 invoked by uid 1008); 22 Jan 2010 17:39:15 -0000
Received: from unknown (HELO kalins-macbook-pro.local)
	(kalin@el.net@24.193.246.51)
	by mail.el.net with ESMTPA; 22 Jan 2010 17:39:15 -0000
Message-ID: <4B59D0F7.7000206@el.net>
Date: Fri, 22 Jan 2010 11:23:19 -0500
From: kalin m <kalin@el.net>
User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812)
MIME-Version: 1.0
To: Laurent Frigault <lfrigault@agneau.org>
References: <4B5958E2.9010509@el.net>
	<20100122093955.GA44733@obelix.bergerie.agneau.org>
In-Reply-To: <20100122093955.GA44733@obelix.bergerie.agneau.org>
Content-Type: text/plain; charset=ISO-8859-15; format=flowed
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-security@freebsd.org
Subject: Re: pf rules
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jan 2010 16:23:21 -0000


Laurent Frigault wrote:
> On Fri, Jan 22, 2010 at 02:50:58AM -0500, kalin m wrote:
>   
>> doing testing with pf...
>>
>> how is it possible that if i have these rules below in pf.conf if i do:
>> telnet that.host.org 25
>>
>> i get:
>> Trying xx.xx.xx.xx...
>> Connected to that.host.org.
>> Escape character is '^]'.
>> ........... etc .......
>>
>>
>> pf.conf contetns:
>>     
> ...
>   
>> set skip on lo
>>     
> ....
>
> You are in a jail and/or that.host.org is a local ip routed via lo0 ?
>
>   
no jail...