Hi!
On 2015-12-08 10:50, Stuart Henderson wrote:
On 2015-12-08, Imre Oolberg <i...@auul.pri.ee> wrote:
Hi!
I have used pflow 5 successfully before but now on OpenBSD v. 5.8 it
seems to refuse working. Config looks like this
# cat /etc/hostname.pflow0
flowsrc 192.168.10.125 flowdst 192.168.10.250:9784 pflowproto 5
description "pflow"
and i start it with (also tried to start manually as man pflow says)
# sh /etc/netstart pflow0
As a result new pflow0 interface appears
# ifconfig pflow0
pflow0: flags=41<UP,RUNNING> mtu 1492
description: pflow
priority: 0
pflow: sender: 192.168.10.125 receiver: 192.168.10.250:9784
version: 5
groups: pflow
but there isnt seen any associated traffic with dst port 9784
Do you have any PF rules (or a "set state-defaults" line) with the
"pflow" keyword?
Yes, i do with
set state-defaults pflow
and for example one rule is like this
# pfctl -sr | egrep xx.35.252.35 | grep 80
pass in quick on seadmed inet proto tcp from any to xx.35.252.35 port =
80 flags S/SA keep state (pflow) tag TO_KOHTVORK rdr-to 192.168.5.8
Otherwise this new firewall is working quite beautifully.
Imre
