From owner-freebsd-pf@FreeBSD.ORG Sat Mar 26 00:25:51 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E872116A4CE for ; Sat, 26 Mar 2005 00:25:51 +0000 (GMT) Received: from mail.primustel.ca (mail.primustel.ca [216.254.136.23]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5058F43D48 for ; Sat, 26 Mar 2005 00:25:51 +0000 (GMT) (envelope-from drwitura@primus.ca) Received: from staffshell.tor.primus.ca ([216.254.136.110]) by mail.primustel.ca with esmtp (Exim 3.36 #1) id 1DEz7e-0007lt-00 for freebsd-pf@freebsd.org; Sat, 26 Mar 2005 00:25:50 +0000 Date: Fri, 25 Mar 2005 19:25:50 -0500 (EST) From: Didier Rwitura To: freebsd-pf@freebsd.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: SSH hanging X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Mar 2005 00:25:52 -0000 I am installing PF I added in /etc/sysctl.com ---> net.inet.ip.forwarding=1 /etc/shell ---> /usr/sbin/authpf /etc/pf.conf Int= "xl0" Ext = "sis0" scrub in all # filter block drop all pass out quick on $Ext proto tcp from $Int:network flags S/SA \ modulate state pass out quick on $Ext proto { udp, icmp } from $Int:network \ keep state pass in quick on $Intproto tcp from $Int:network to $Int\ port ssh flags S/SA keep state anchor "authpf/*" in on $Int /etc/authpf/authpf.rules Int = "xl0" dns_servers = "{ 10.0.0.33, 66.11.168.194 }" pass in quick on $Int proto udp from $user_ip to $dns_servers \ port domain keep state pass in quick on $Int proto tcp from $user_ip to port { ssh, http, \ https } flags S/SA keep state I am getting Hello didier, You are authenticated from host "10.0.0.33" when I connect with ssh but it hangs ... I don't get the prompt any help will be appreciated Thanx -- ------------------------------------------ Didier Rwitura Technical Support Technique Primus Telecommunications Inc Tel: 1-800-370-0015 Residential 1-888-222-8577 Commercial Ext :8628 "injustice anywhere is a threat to justice everywhere" Martin Luther King Jr -- ---------------------------------------------------------------------------- This electronic message contains information from Primus Telecommunications Canada Inc. ("PRIMUS") , which may be legally privileged and confidential. The information is intended to be for the use of the individual(s) or entity named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. If you have received this electronic message in error, please notify us by telephone or e-mail (to the number or address above) immediately. Any views, opinions or advice expressed in this electronic message are not necessarily the views, opinions or advice of PRIMUS. It is the responsibility of the recipient to ensure that any attachments are virus free and PRIMUS bears no responsibility for any loss or damage arising in any way from the use thereof.The term "PRIMUS" includes its affiliates. ---------------------------------------------------------------------------- Pour la version en français de ce message, veuillez voir http://www.primustel.ca/fr/legal/cs.htm ----------------------------------------------------------------------------