Just a note. I have the manpage for pkg.conf printed and in a binder. Thanks
again.
On Wed, May 27, 2020, at 20:36, Cristian Cardoso wrote:
> I reinforce Doug's recommendation and if you want to log the things
> that are possibly blocked, insert it in pf.conf
>
> block in log all
>
> About wh
Thank you Doug and Cristian for all your help.
I found the solution based on something Doug said about seeing a request in
IPv6. I decided to try something I found in Absolute Freebsd pg 356.
"I've been on more than one network that has better IPv6 connectivity than
IPv4, or the other way.
I reinforce Doug's recommendation and if you want to log the things
that are possibly blocked, insert it in pf.conf
block in log all
About what Doug talked about starting the connection in IPv4 and
switching to IPv6, it is only the DNS request in IPv4 that is managing
to answer the domain update.
> On 27 May 2020, at 14:38, Donald Mickunas wrote:
>
> Thanks, Doug.
>
> Here are the results after running pkg update once.
>
> $ sudo tcpdump -n -e -ttt -r /var/log/pflog
> Password:
> reading from file /var/log/pflog, link-type PFLOG (OpenBSD pflog file)
> 00:00:00.00 rule 7/0(match): pa
Thanks, Doug.
Here are the results after running pkg update once.
$ sudo tcpdump -n -e -ttt -r /var/log/pflog
Password:
reading from file /var/log/pflog, link-type PFLOG (OpenBSD pflog file)
00:00:00.00 rule 7/0(match): pass out on em0: 192.168.1.4.25334 >
192.168.1.1.53: 18844+[|domain]
0
> On 27 May 2020, at 14:16, Donald Mickunas wrote:
>
> Thank you for you suggestion, Cristian.
>
> I have implemented your suggestion with unexpected results. Note: I did
> reboot the system after I changed rc.conf.
>
> $ cat /etc/pf.conf
> set skip on lo0
> block all
> pass in proto tcp to p
Thank you for you suggestion, Cristian.
I have implemented your suggestion with unexpected results. Note: I did reboot
the system after I changed rc.conf.
$ cat /etc/rc.conf
clear_tmp_enable="YES"
sendmail_enable="NONE"
hostname="donsoptiplex"
keymap="us.kbd"
ifconfig_em0="DHCP"
ifconfig_em0_ip
Hello
Try to activate pf logs to see what is blocking or slowing you down,
insert this in the /etc/rc.conf file
pflog_enable = "YES"
pflog_logfile = "/ var / log / pflog"
To view the logs afterwards is via tcpdump, as follows:
tcpdump -n -e -ttt -r / var / log / pflog
Em qua., 27 de mai. de 2020
Hi all,
I am new to firewalls and trying to learn. I am attempting to set up a pf
firewall on FreeBSD 12.1-RELEASE-p5. This is a home computer for personal use
and is not part of a server network. "pkg update" will take a minute or more to
complete a verification that it is up to date with the
