On 11/02/2014 15:07, [email protected] wrote: > Hello. > I have a FreeBSD 9.2 amd64 with pf (build in kernel). > Can pf block some IP (sessions) immediately? Next rule can block only > new sessions, but currect open sessions stay open as long as they open > by IP > > block quick from X.X.X.X to any > block quick from any to X.X.X.X > > Also, I can do pfctl -F sessions, but it flushes all sessions of all > users. > > tcpdrop not shown this sessions, because this is a nat sessions. pfctl -k or -K looks like what you need.
The pfctl(8) man page seems to cover it quite well. Vince > > Thanks. > _______________________________________________ > [email protected] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "[email protected]" > _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[email protected]"
