From owner-freebsd-pf@FreeBSD.ORG Sat Dec 26 12:54:55 2009 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2B06B1065670 for ; Sat, 26 Dec 2009 12:54:55 +0000 (UTC) (envelope-from laszlo_danielisz@yahoo.com) Received: from web30804.mail.mud.yahoo.com (web30804.mail.mud.yahoo.com [68.142.200.147]) by mx1.freebsd.org (Postfix) with SMTP id E0FD58FC12 for ; Sat, 26 Dec 2009 12:54:54 +0000 (UTC) Received: (qmail 16147 invoked by uid 60001); 26 Dec 2009 12:54:54 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1261832094; bh=6O0YOiOCUunXn3pFFDnxyOgaU1IVwp1qNWYW4Cy9o28=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=TFfrFFseYpytDQlvVvebEEZYPio01iNBNag8nvQFjP1gLOmh03NfTdHLQmjgG39xg5oLivfM3YlrjihPOqCIbOQ73Wze2BA8hbd1Fbk5+bi1OIuDQWTTtEMYI5q5Y1c5q+90H4r+97Ux+SMlwMOTsnbajz6O2AixzIBxobqkP6o= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=Edy8/b/VQU1ixMpqKW5gvNlY6v3tMxWH/FofNMRHwpxBhA25FZvP0N+umW/yjT/2PINj7RhmpqUL72AFrNE8btxLSJCF99djj3GbVNnVnZnXY65hi6BW06QdWPGyK5qH6oLuxq/LhHZGE4yw37NoHLZ6ejkkgBCCJ4eZkK+o/LY=; Message-ID: <193907.15997.qm@web30804.mail.mud.yahoo.com> X-YMail-OSG: zd0BqFcVM1mQH.q3LpurDnAzPimjAR2rdwgA3dESIeyrkdio9Wesm4ekYRQ_.KE23yMo7_VzcHPLBZn4BfwiI75pVJj83.W15506KWDCQhygsqvkqQo4ErM0y6LBaER5gkxXLNdNB7W3oiYXDvVNyHXgP88iLF5APvgRvT5ET.UjINL3CvWc8xR6MicVni0ZzgI132uPBuxk80AAiU6tPN8UAtzJ80BgAOjjxo1_aGW0e4frLsWkZiTacUvILQ3ODGTcoW809N_xdVEjIAeBtUuHN63z9622J2vqj_LTcOEH_DNmEcfSkUK2Z9n3bNDGaYuYmlH.pOaWU_ILBlHs5RogyA-- Received: from [79.113.77.15] by web30804.mail.mud.yahoo.com via HTTP; Sat, 26 Dec 2009 04:54:53 PST X-Mailer: YahooMailRC/240.3 YahooMailWebService/0.8.100.260964 References: <206966.91825.qm@web30802.mail.mud.yahoo.com> <20091226095613.GX5508@verio.net> Date: Sat, 26 Dec 2009 04:54:53 -0800 (PST) From: =?iso-8859-1?Q?D=E1nielisz_L=E1szl=F3?= To: David DeSimone In-Reply-To: <20091226095613.GX5508@verio.net> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-pf@freebsd.org Subject: Re: pf vs. afp X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Dec 2009 12:54:55 -0000 Gosh, I feel so ashamed, blind me.=0AThank you very much!=0A=0A=0A=0A______= __________________________=0AFrom: David DeSimone =0ATo: Dan= ielisz Laszlo =0ACc: freebsd-pf@freebsd.org=0AS= ent: Sat, December 26, 2009 10:56:14 AM=0ASubject: Re: pf vs. afp=0A=0ADnie= lisz Lszl wrote:=0A>=0A> bad_ports =3D "69,135= ,137,138,139,445,524,548,1433,6000,31337,666,12345"=0A> =0A> # SPECIAL IMME= DIATE BLOCKS:=0A> # block bad ports and external broadcasts=0A> block in qu= ick proto { udp,tcp } from any to any port { =3D $bad_ports }=0A=0AThis r= ule specifies to block (quick) port 548 (part of $bad_ports), so=0Ayour rul= es that occur later cannot allow that port.=0A=0A-- =0ADavid DeSimone =3D= =3D Network Admin =3D=3D fox@verio.net=0A "I don't like spinach, and I'm g= lad I don't, because if I=0A liked it I'd eat it, and I just hate it." --= Clarence Darrow=0A=0A=0AThis email message is intended for the use of the = person to whom it has been sent, and may contain information that is confid= ential or legally protected. If you are not the intended recipient or have = received this message in error, you are not authorized to copy, distribute,= or otherwise use this message or its attachments. Please notify the sender= immediately by return e-mail and permanently delete this message and any a= ttachments. Verio, Inc. makes no warranty that this email is error or virus= free. Thank you.=0A=0A=0A=0A