On Mon, Mar 07, 2011 at 10:54:09AM +0100, Henrik Engmark wrote:
> Is there a way, good or bad, to relax pf enough to let nmap do its
> OS detection?
> I am on 4.8.
You can always disable pf (pfctl -d). I'd also expect any sensible
configuration without "scrub" or (implicit) "keep state" to work, but I
didn't check that.
E.g. you could try
set skip on lo0
pass
block in on ! lo0 proto tcp to port 6000:6010
pass user root no state
pass icmp no state
Joachim
--
PotD: devel/p5-Sort-Key - sort perl arrays
http://www.joachimschipper.nl/
