From owner-freebsd-questions@FreeBSD.ORG  Wed Dec 23 18:08:51 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 0AFAD1065670
	for <freebsd-questions@freebsd.org>;
	Wed, 23 Dec 2009 18:08:51 +0000 (UTC)
	(envelope-from laszlo_danielisz@yahoo.com)
Received: from web30804.mail.mud.yahoo.com (web30804.mail.mud.yahoo.com
	[68.142.200.147])
	by mx1.freebsd.org (Postfix) with SMTP id BFF508FC20
	for <freebsd-questions@freebsd.org>;
	Wed, 23 Dec 2009 18:08:50 +0000 (UTC)
Received: (qmail 62782 invoked by uid 60001); 23 Dec 2009 18:08:50 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024;
	t=1261591730; bh=p/Mh93PbT/gFs8NTIvLw6vseyXUqOhF1D+qksOVO1rw=;
	h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type;
	b=pO+JLeQ3E/Ugt6QD0dG+MgEUWnULOGC7w5BfJnGcF+WMOzYrFIqdp3Q8+p1Co1jOFU0SmCC6ts2oUf12dpULwDmYvGFCEX9fiPVsK3+5on79mPhs6gqbmoFt+lVsbdjiwDzBsTB0YKXw7FEpvxLokTuD/awUZNuU4u98yKwzOsM=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
	h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type;
	b=VqF7gzOHcUifCzWhAGvxM5d+YwEIM81eGevpd7QicuPwOKIjeJs7WpI+Hw4JEqqMMUWofe7I8yaznTgyFA2akZEDaYjG5DFmqtwW2cIPfedqZJWElkfZWsNTD1zc41i6az7RhgFhPcsb0R3gY+LYoGyPEhniIIUGPM5DFRFi/Xg=;
Message-ID: <83865.62779.qm@web30804.mail.mud.yahoo.com>
X-YMail-OSG: B_IU7ycVM1laCZ40izY7RForpWVZAlAykGN0G8FR4aEKTLos1h49aOZmmiAF59UTq25PubG6lNgOk0SJG6SH_Irlx4yMoWpLkV4.09NLASLJjR0UH.dg_qz8Q6XRZIg2ij5ILnRIFOBGV6jp3XT4F2hyyN0XGPMieIqfCcoGIyrSmKY9.jLorbbRIls2ND08_Dhd0JgWAZbyOCaLTk_A2tOWjlt12j8HfAVTR_6idIFtcj4gpc0P4F8F5x_oOivD7Re18diZdztIY.4vzflVV8ZFbnWUdajDqMjI3NI9X.yiuVR8vmsIzZWtik8NqVI2pUT_M6a6AD_fgY746PbaZGh2jA--
Received: from [78.131.57.57] by web30804.mail.mud.yahoo.com via HTTP;
	Wed, 23 Dec 2009 10:08:49 PST
X-Mailer: YahooMailRC/240.3 YahooMailWebService/0.8.100.260964
References: <997383.83740.qm@web30806.mail.mud.yahoo.com>
	<942242.34924.qm@web30808.mail.mud.yahoo.com>
Date: Wed, 23 Dec 2009 10:08:49 -0800 (PST)
From: =?iso-8859-1?Q?D=E1nielisz_L=E1szl=F3?= <laszlo_danielisz@yahoo.com>
To: freebsd-questions@freebsd.org
In-Reply-To: <942242.34924.qm@web30808.mail.mud.yahoo.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Subject: Re: afp+pf
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Dec 2009 18:08:51 -0000

I'm sending you my pflog captured whiled I try to connect, maybe somebody w=
ill figure out something:=0A=0A=0A# tcpdump -i rl0 -n port 548=0Atcpdump: v=
erbose output suppressed, use -v or -vv for full protocol decode=0Alistenin=
g on rl0, link-type EN10MB (Ethernet), capture size 96 bytes=0A=0A19:01:31.=
353245 IP 192.168.1.101.63912 > 192.168.1.1.548: Flags [S], seq 721406618, =
win 65535, options [mss 1460,nop,wscale 3,nop,nop,TS val 206874734 ecr 0,sa=
ckOK,eol], length 0=0A19:01:35.358575 IP 192.168.1.101.63912 > 192.168.1.1.=
548: Flags [S], seq 721406618, win 65535, options [mss 1460,sackOK,eol], le=
ngth 0=0A=0A=0A=0A=0A________________________________=0AFrom: D=E1nielisz L=
=E1szl=F3 <laszlo_danielisz@yahoo.com>=0ATo: freebsd-questions@freebsd.org=
=0ASent: Wed, December 23, 2009 6:35:02 PM=0ASubject: Re: afp+pf=0A=0AI jus=
t tried with "flags any" but still not working.=0A=0A=0A=0A________________=
________________=0AFrom: D=E1nielisz L=E1szl=F3 <laszlo_danielisz@yahoo.com=
>=0ATo: freebsd-questions@freebsd.org=0ASent: Wed, December 23, 2009 5:01:4=
1 PM=0ASubject: afp+pf=0A=0AHello,=0A=0AIt's been a while I struggeling how=
 to deal with apf/netatalk passing trough my pf rules. If I disable pf ever=
ything is working great (but I still do want firewall on my server). I trie=
d the following rule but it still don't lets me in:=0A=0Apass in log on $in=
t_if inet proto { tcp, udp } from $localnet to ($int_if) port=3D548  flags =
S/SA keep state=0A=0AWhen I try a telnet on port 548 I got "Operation timed=
 out", in pflog I can see that my Mac tries to connect but I have no clue w=
hy it can't when the coresponding port is open, do you have any idea?=0A=0A=
Thank you!=0ALaci=0A=0A=0A