On 3/20/07, Lawrence Horvath <[EMAIL PROTECTED]> wrote:
On 20/03/07, Stuart Henderson <[EMAIL PROTECTED]> wrote:
> On 2007/03/20 09:24, Lawrence Horvath wrote:
> > is there a way to tag the packets going to pflog, i can see the
> > packets being blocked with tcpdump on /var/log/pflog, but i would like
> > to know what rule is blocking them
>
> if you use '-e' to tcpdump, it dumps the link-layer headers -
> on a pflog(4) interface this includes the rule number.
>
>
switched to the below rules, it seems that it was ignoring the
exterior interface, perhaps because it has no ip on it or perhaps
because its in a bridge, not sure
in fact it seems to ignore all rules on the exterior interface
completely, could anyone shed some light on why that is? and how i can
get it to pass through both interface rules?
A bridge isn't an in/out paradigm like a router in the way you're
thinking. Filter on one interface as suggested in
http://www.openbsd.org/faq/faq6.html#Bridge and it's less hassle.
DS
