From owner-freebsd-pf@FreeBSD.ORG Tue May 13 03:23:35 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 19E8B106564A for ; Tue, 13 May 2008 03:23:35 +0000 (UTC) (envelope-from m.pagulayan@auckland.ac.nz) Received: from mailhost.auckland.ac.nz (larry.its.auckland.ac.nz [130.216.12.34]) by mx1.freebsd.org (Postfix) with ESMTP id C69F08FC20 for ; Tue, 13 May 2008 03:23:34 +0000 (UTC) (envelope-from m.pagulayan@auckland.ac.nz) Received: from localhost (localhost.localdomain [127.0.0.1]) by mailhost.auckland.ac.nz (Postfix) with ESMTP id BFCC718653; Tue, 13 May 2008 15:23:32 +1200 (NZST) X-Virus-Scanned: by amavisd-new at mailhost.auckland.ac.nz Received: from mailhost.auckland.ac.nz ([127.0.0.1]) by localhost (larry.its.auckland.ac.nz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VMnW6i3OthDn; Tue, 13 May 2008 15:23:32 +1200 (NZST) Received: from UXCHANGE2.UoA.auckland.ac.nz (uxcn1.itss.auckland.ac.nz [130.216.190.118]) by mailhost.auckland.ac.nz (Postfix) with ESMTP id A55D81864D; Tue, 13 May 2008 15:23:32 +1200 (NZST) Received: from UXCHANGE1.UoA.auckland.ac.nz ([130.216.190.121]) by UXCHANGE2.UoA.auckland.ac.nz with Microsoft SMTPSVC(6.0.3790.1830); Tue, 13 May 2008 15:23:32 +1200 x-mimeole: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Tue, 13 May 2008 15:23:34 +1200 Message-ID: In-Reply-To: <20080513030251.GA47608@eos.sc1.parodius.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: smtp not working with state modulation Thread-Index: Aci0peQGKiTtvCd/RRGdSfrZYl13WQAAsgaA References: <20080513030251.GA47608@eos.sc1.parodius.com> From: "Mark Pagulayan" To: "Jeremy Chadwick" X-OriginalArrivalTime: 13 May 2008 03:23:32.0430 (UTC) FILETIME=[B8946EE0:01C8B4A8] Cc: freebsd-pf@freebsd.org Subject: RE: smtp not working with state modulation X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 13 May 2008 03:23:35 -0000 Thanks for the reply Jeremy. This is a big help.=20 Cheers,=20 Mark -----Original Message----- From: Jeremy Chadwick [mailto:koitsu@freebsd.org]=20 Sent: Tuesday, 13 May 2008 3:03 p.m. To: Mark Pagulayan Cc: freebsd-pf@freebsd.org Subject: Re: smtp not working with state modulation On Tue, May 13, 2008 at 01:53:31PM +1200, Mark Pagulayan wrote: > OS: FreeBSD 7.0-RELEASE > I am having trouble Allowing external request SMTP through the firewall > with "module state". But with "keep state" it is working fine.=20 modulate state is known to be broken; use keep state instead. Here's the thread where I was informed of this fact: http://lists.freebsd.org/pipermail/freebsd-pf/2008-March/004223.html http://lists.freebsd.org/pipermail/freebsd-pf/2008-March/004227.html --=20 | Jeremy Chadwick jdc at parodius.com | | Parodius Networking http://www.parodius.com/ | | UNIX Systems Administrator Mountain View, CA, USA | | Making life hard for others since 1977. PGP: 4BD6C0CB |