Date: Mon, 26 Jul 2010 08:02:28 -0700 From: Justin <justin@sk1llz.net> To: freebsd-pf@freebsd.org Subject: Re: pf synproxy Message-ID: <4C4DA384.8030504@sk1llz.net> In-Reply-To: <20100726140545.GB72163@mail.hs.ntnu.edu.tw> References: <4C4D7EED.4060704@sk1llz.net> <20100726140545.GB72163@mail.hs.ntnu.edu.tw>
next in thread | previous in thread | raw e-mail | index | archive | help
... it's not an if_bridge, thanks. On 7/26/2010 7:05 AM, Denny Lin wrote: > On Mon, Jul 26, 2010 at 05:26:21AM -0700, Justin wrote: > >> Hello all - I've tried searching the list but it seems something is >> broken and I'm getting 500 errors. Alas, >> >> Is there something unique about using synproxy in a gateway style >> firewall that isn't outlined in the PF manuals? Here's the scenario: >> >> Internet -> em0 | pf rules | em1 -> target host. >> > Synproxy does not work when on bridges. > > From pf.conf(5): > Rules with synproxy will not work if pf(4) operates on a if_bridge(4). > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4C4DA384.8030504>