Date: Thu, 16 Sep 2004 03:47:15 -0000 From: "Max Laier" <max@love2party.net> To: <pf4freebsd@freelists.org> Subject: [pf4freebsd] Re: Bridging? Message-ID: <01a901c36cee$09bd6810$01000001@max900> References: <200308262103.12394.alan@precisionautobody.com> <004701c36c53$ed0c0860$01000001@max900> <200308262247.46254.alan@precisionautobody.com>
next in thread | previous in thread | raw e-mail | index | archive | help
That's strange. Can you send output of "pfctl -gvvsa" after some traffic.
Maybe with this ruleset:
>>>>
block in log
block out log
<<<<
If you have time to test a bit, I'd like to send you some debugging code to
run, as I don't have a bridge setup at hand for testing.
Regards,
Max
> When I do all of that I get a working bridge but it doesn't block anything
> except some port 137 broadcast packets (by watching pftcpdump results as
> recommended). I can still ping through the bridge both directions and
> connect via ssh through the bridge.
>
> Given the above config shouldn't everything be blocked? Does anyone see
> something I've done wrong or omitted?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01a901c36cee$09bd6810$01000001>