Date: Sat, 11 Mar 2006 09:37:56 -0000 From: "Greg Hennessy" <Greg.Hennessy@nviz.net> To: "'Jacob, Raymond A Jr'" <raymond.jacob@navy.mil>, <freebsd-pf@freebsd.org> Subject: RE: Two(2) questions regarding quick and adding rules later. Message-ID: <000001c644ef$7ac4ace0$0301a8c0@vaio> In-Reply-To: <653C8E7D21FB654997909E77C691053F446ADB@NAEAWNYDEX21VA.nadsusea.nads.navy.mil>
next in thread | previous in thread | raw e-mail | index | archive | help
> > All traffic blocked unless I use quick. > tcpdump -n -e -ttt -r /var/log/pflog > showed traffic was blocked by the last rule unless I added > quick to pass rules. > I thought the matching rules would have overiden the block rule? If you don't use quick , the last matching rule wins. Make the very 1st rule block log all And delete any non specific blocks further down. Greg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000001c644ef$7ac4ace0$0301a8c0>