From owner-freebsd-pf@FreeBSD.ORG Wed Aug 20 17:16:20 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2E0FF1065674 for ; Wed, 20 Aug 2008 17:16:20 +0000 (UTC) (envelope-from leslie@eskk.nu) Received: from hawk.thalamus.net (hawk.thalamus.net [212.31.160.3]) by mx1.freebsd.org (Postfix) with ESMTP id CC3038FC1F for ; Wed, 20 Aug 2008 17:16:19 +0000 (UTC) (envelope-from leslie@eskk.nu) Received: from localhost (localhost.thalamus.net [127.0.0.1]) by hawk.thalamus.net (Postfix) with ESMTP id 67BC31EE87C; Wed, 20 Aug 2008 19:16:14 +0200 (CEST) X-Virus-Scanned: by amavisd-new at thalamus.net X-Spam-Flag: NO X-Spam-Score: 2.336 X-Spam-Level: ** X-Spam-Status: No, score=2.336 tagged_above=-999 required=4.2 tests=[AWL=-0.833, HELO_LH_HOME=3.169] Received: from hawk.thalamus.net ([127.0.0.1]) by localhost (hawk.thalamus.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qtGfAaxc8Pxv; Wed, 20 Aug 2008 19:16:06 +0200 (CEST) Received: from lesbsdpc.homenet.home (c-195-216-040-164.static.bjare.net [195.216.40.164]) by hawk.thalamus.net (Postfix) with ESMTP id A7D1B1EE872; Wed, 20 Aug 2008 19:16:06 +0200 (CEST) Message-ID: <48AC515B.7060409@eskk.nu> Date: Wed, 20 Aug 2008 19:16:11 +0200 From: Leslie Jensen User-Agent: Thunderbird 2.0.0.16 (X11/20080729) MIME-Version: 1.0 To: Jeremy Chadwick References: <48AC266D.2030902@eskk.nu> <20080820143855.GA40160@eos.sc1.parodius.com> In-Reply-To: <20080820143855.GA40160@eos.sc1.parodius.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-pf@freebsd.org Subject: #2... sorry typing error Re: port stealth mode? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Aug 2008 17:16:20 -0000 Jeremy Chadwick skrev: > On Wed, Aug 20, 2008 at 04:13:01PM +0200, Leslie Jensen wrote: >> I've done some testing with Steve Gibsons "Shields up" >> https://www.grc.com/x/ne.dll?bh0bkyd2 >> >> These tests lists the ports as closed but visible. >> >> Instead the site suggest that one uses stealth so that the ports are not >> visible from the Internet. >> >> Is there a way to achieve this with PF? > > The "block" directive, along with "set block-policy drop" should suffice > for accomplishing this in pf. > Thank you Jeremy. I had "return" instead of "drop". Now when I do the test the ports 0, 1 and 53 are closed, not dropped. I do not have any rules to allow these ports. Any suggestions on what might be the reason for this? /Leslie _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"