Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 12 Mar 2016 13:31:40 -0800
From:      Yakov Feldman <yafeldman@gmail.com>
To:        freebsd-pf@freebsd.org
Subject:   unable to block port on MacBook Pro
Message-ID:  <CAEs%2BjQhBK%2BQcVzhMYLFRSr_4-iscm_CSAV0JFhJbE_8WrerptA@mail.gmail.com>
next in thread | raw e-mail | index | archive | help 
I am trying to block the process that is listening upon the port 9110 on my
MacBook Pro in order to simulate network interruption.

If I have the following rule:

    -------------------------------------------------------------------

     block drop quick on ALL proto tcp from any to any port = 9110

    --------------------------------------------------------------------

 my second process has successfully communicated with the blocked port, and
the client has successfully sent requests to the blocked process. The best
I could achieve is blocking all process communications with these list of
rules:

  ---------------------

    block drop in all

    block drop out all

---------------------


 However, it is not exactly what I need. Am I missing anything? Any
commnets/suggestion will be appreciated. Here is my lsof command output:


   >> lsof -i | grep 9110

   java      41243  yfe  132u  IPv6 0x1e7d5327e0e36555      0t0  TCP
192.168.1.68:58772->192.168.1.68:9110 (ESTABLISHED)

   java      41243  yfe  145u  IPv6 0x1e7d5327e0f43035      0t0  TCP
192.168.1.68:58777->192.168.1.68:9110 (ESTABLISHED)

   java      41244  yfe  133u  IPv6 0x1e7d5327e116eab5      0t0  TCP
192.168.1.68:58747->192.168.1.68:9110 (ESTABLISHED)

   java      41244  yfe  147u  IPv6 0x1e7d5327e0e3a075      0t0  TCP
192.168.1.68:58756->192.168.1.68:9110 (ESTABLISHED)

   java      41253  yfe  201u  IPv6 0x1e7d5327e0e38595      0t0  TCP *:9110
(LISTEN)

   java      41253  yfe  278u  IPv6 0x1e7d5327e0e39055      0t0  TCP
192.168.1.68:9110->192.168.1.68:58747 (ESTABLISHED)

   java      41253  yfe  279u  IPv6 0x1e7d5327e4a195b5      0t0  TCP
192.168.1.68:9110->192.168.1.68:58756 (ESTABLISHED)

   java      41253  yfe  280u  IPv6 0x1e7d5327e5560035      0t0  TCP
192.168.1.68:9110->192.168.1.68:58772 (ESTABLISHED)

   java      41253  yfe  281u  IPv6 0x1e7d5327e0f43af5      0t0  TCP
192.168.1.68:9110->192.168.1.68:58777 (ESTABLISHED)

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAEs%2BjQhBK%2BQcVzhMYLFRSr_4-iscm_CSAV0JFhJbE_8WrerptA>