Ok,
it was counter & counters discrepancy.
kindly disregard.
thanks all.
Gregory Edigarov wrote:
pf rules:
block drop log all
pass in quick on rl0 from <counters> to any no state
pass out quick on rl0 from any to <counters> no state
pass out on rl0 all flags S/SA keep state
# pfctl -v -Tshow -t counter
80.92.224.118
Cleared: Wed Jul 23 10:15:43 2008
In/Block: [ Packets: 0 Bytes:
0 ]
In/Pass: [ Packets: 0 Bytes:
0 ]
Out/Block: [ Packets: 0 Bytes:
0 ]
Out/Pass: [ Packets: 0 Bytes:
0 ]
# ping -c 5 -s1024 80.92.224.118
PING 80.92.224.118 (80.92.224.118): 1024 data bytes
1032 bytes from 80.92.224.118: icmp_seq=0 ttl=63 time=22.269 ms
1032 bytes from 80.92.224.118: icmp_seq=1 ttl=63 time=22.037 ms
1032 bytes from 80.92.224.118: icmp_seq=2 ttl=63 time=21.979 ms
1032 bytes from 80.92.224.118: icmp_seq=3 ttl=63 time=25.287 ms
1032 bytes from 80.92.224.118: icmp_seq=4 ttl=63 time=22.088 ms
--- 80.92.224.118 ping statistics ---
5 packets transmitted, 5 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 21.979/22.732/25.287/1.281 ms
# pfctl -v -Tshow -t counter
80.92.224.118
Cleared: Wed Jul 23 10:15:43 2008
In/Block: [ Packets: 0 Bytes:
0 ]
In/Pass: [ Packets: 0 Bytes:
0 ]
Out/Block: [ Packets: 0 Bytes:
0 ]
Out/Pass: [ Packets: 0 Bytes:
0 ]
What gives?
--
With best regards,
Gregory Edigarov
