On 2014-10-28, Julian Smith <ju...@op59.net> wrote: > Yes, i've enabled logging and i see various items such as: > > ju...@server-55.my.domain:~ > sudo tcpdump -v -i pflog0
Add -e to the tcpdump line, it will show you action (block/match/pass) and rule numbers, then check the traffic hits the expected rule (pfctl -sr -R ## displays a rule by number).