Date: Wed, 02 Mar 2022 13:54:34 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 262295] [pf] Tables and anchors Message-ID: <bug-262295-227-t2Gj6Vgjnr@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-262295-227@https.bugs.freebsd.org/bugzilla/> References: <bug-262295-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D262295 --- Comment #2 from Matteo Riondato <matteo@FreeBSD.org> --- Some more investigation: it turns out that the problem is more subtle than I thought. My previous examples of pf.conf were "slimmed down" versions of wh= at I actually tried. The following does not work: table <bruteforce> persist block log quick from <bruteforce> label "bruteforceblock" pass in proto tcp from any to ($interface) port ${tcp_services} keep state \ (max-src-conn 10, max-src-conn-rate 1/4, \ overload <bruteforce> flush global) The following works: table <bruteforce> persist block log quick from <bruteforce> label "mybruteforceblock" pass in proto tcp from any to ($interface) port ${tcp_services} keep state \ (max-src-conn 10, max-src-conn-rate 1/4, \ overload <bruteforce> flush global) The only difference is the label in the block rule. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-262295-227-t2Gj6Vgjnr>