From owner-freebsd-pf@FreeBSD.ORG Fri Nov 30 12:20:27 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 21207CEB for ; Fri, 30 Nov 2012 12:20:27 +0000 (UTC) (envelope-from tfgoncalves@yahoo.com.br) Received: from nm37-vm3.bullet.mail.gq1.yahoo.com (nm37-vm3.bullet.mail.gq1.yahoo.com [98.136.216.238]) by mx1.freebsd.org (Postfix) with ESMTP id A61FE8FC12 for ; Fri, 30 Nov 2012 12:20:26 +0000 (UTC) Received: from [98.137.12.55] by nm37.bullet.mail.gq1.yahoo.com with NNFMP; 30 Nov 2012 12:20:20 -0000 Received: from [208.71.42.211] by tm15.bullet.mail.gq1.yahoo.com with NNFMP; 30 Nov 2012 12:20:20 -0000 Received: from [127.0.0.1] by smtp222.mail.gq1.yahoo.com with NNFMP; 30 Nov 2012 12:20:20 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com.br; s=s1024; t=1354278020; bh=hbYy9OrndCB5qo/bQuQuP0f3cCs3KZayCa1XfUx7+60=; h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Received:Message-ID:Date:From:User-Agent:MIME-Version:To:Subject:References:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=Bjnis97wed111zwQ122R9/W42Y61rgQkKfo0qrNMXBFS8I/G0X+U1tOYmb+lF/ruRietKm7AaZr7MS2hdbndFCkMvEfUnHzhWWB4k1Q9H/20cFRBF5UCu61I0qW5NuEqGymdpmHOvRGZOvtyG/BT/7d0WD0VdV0aDQViEpRrd+8= X-Yahoo-Newman-Id: 41345.32871.bm@smtp222.mail.gq1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: SDHRjVEVM1lvY2kjTXafBvkAq8g.Gk1tT7WxKb5i8InEfgh _QtD_9zKYE5GP9M6lvywKStT26fFUeVSvMXmwrJ.xRLfLGYL0jcHW4zYF9vH TcNpfivu6.QJS5a8jCJWXsZRVc48D3jfr5wPTJGROzlY2GTdxFxTqBdTbtp9 KDuB6hD7XV_9RLGS1BXpKlZq1VqUMLbWZ5hTngxXie18BMzPSQ1cXrrymd_G n9dnP7TRUtYbGj5sCzdXQkvRjo.rrhMxrmuxi8Xx9XPz.B_N7e67o.VFgEYh uTQSNS5bWGWw3.98joT2k7W7DvZt_oxmz8qydEELYjLusL.tVpOytKg35Cj3 r8G9dK58c4Dyc8dbNh3AlrTKHOMHZyR4KWaYcMtuML8A_wioKFORPu2J.NFu A46NGWA.3BgNks75vWlO_.6Ug0v9yu14N0CEETng5i14pi8UQlIFomXiuquL yF9x6_.E_DRdhL8G6vaNir7YOz0XMg51ceJtP6xZsKxg5CA-- X-Yahoo-SMTP: yejC.yGswBDzcY.VmwcuyKwGCegnB.Xy Received: from [186.250.58.220] (tfgoncalves@186.250.58.220 with plain) by smtp222.mail.gq1.yahoo.com with SMTP; 30 Nov 2012 04:20:19 -0800 PST Message-ID: <50B8A47E.8060604@yahoo.com.br> Date: Fri, 30 Nov 2012 10:20:14 -0200 From: Tiago Felipe User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.10) Gecko/20121027 Icedove/10.0.10 MIME-Version: 1.0 To: freebsd-pf@freebsd.org Subject: Re: pfctl -s rules References: <49BF4308335C496593D1D7C82391C805@yahoo.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 Nov 2012 12:20:27 -0000 On 11/30/2012 09:02 AM, Fleuriot Damien wrote: > On Nov 30, 2012, at 12:00 PM, Laszlo Danielisz wrote: > >> Hi Everybody, >> >> Recently I've discover the following issues: I can't display my firewalls rules, and the firewall is enabled. >> Take a look what is happening: >> >> ktulu# pfctl -s rules >> No ALTQ support in kernel >> ALTQ related functions disabled >> ktulu# pfctl -e >> No ALTQ support in kernel >> ALTQ related functions disabled >> pfctl: pf already enabled >> >> ktulu# uname -a >> FreeBSD ktulu.danielisz.eu 8.3-RELEASE-p3 FreeBSD 8.3-RELEASE-p3 #0: Mon Jun 11 23:52:38 UTC 2012 root@i386-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC i386 >> >> >> >> Do you have any idea why I can not see them? >> >> Thx! >> Laszlo > > > Actually, I believe you can see your rules, all the 0 of them. > > Try pfctl -nf /etc/pf.conf > > See if you have an error when loading the rules, that would explain it all. > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" # pfctl -s all the device is loaded? # kldload pf.ko or recompile the kernel device pf device pflog device pfsync after that reload the rules wtih # pfctl -nf /etc/pf.conf and see if change something. sorry, my english sux. -- Att, Tiago Felipe Gonçalves. Gerente de Infraestrutura de TI. +55 19 99196494