Re: pf.conf

2003-11-02 Thread Daniel Hartmeier
On Sun, Nov 02, 2003 at 11:13:31AM +0100, [EMAIL PROTECTED] wrote: > what I must make? Disable pf, verify the problem goes away. If it doesn't, the problem is not with pf, and you have to look elsewhere. Add 'log' to _all_ your 'block' rules. Reload that ruleset. Enable pf. Reproduce the problem

Re: latest snapshot, pf blocks until reloaded

2003-11-02 Thread Daniel Hartmeier
On Sun, Nov 02, 2003 at 11:36:53AM +0059, Han Boetes wrote: > >From my linux desktop to my openbsd (dhcp)server I got an ip-address via > dhcp. ``ifconfig eth0'' and ``route -an'' on the desktop looks totally > normal. ``ifconfig ep0;; and ``route -an'' and ``pfctl -s all'' on the > openbsd machin

Re: latest snapshot, pf blocks until reloaded

2003-11-02 Thread Michiel van Baak
Make sure to have the following line in your /etc/sysctl.conf net.inet.ip.forwarding=1 During one of my upgrades this setting was lost. Took me 3 days to figure it out. Maybe this happened to you too. Michiel On Sun, 2003-11-02 at 19:17, pf-list wrote: > I may be experiencing the same problem yo

Re: latest snapshot, pf blocks until reloaded

2003-11-02 Thread pf-list
I may be experiencing the same problem you are speaking of. I just upgraded to 3.4-RELEASE and now my firewall refuses to route traffic. >From the firewall itself i can get anywhere. From the internal network i can get to the firewall. It's almost as if it's ignoring my nat rules entirely.

Re: upgrade pb

2003-11-02 Thread marc
On Sun, 2 Nov 2003 14:22:39 +0100 marc <[EMAIL PROTECTED]> wrote: > i just upgrade to obsd 3.4 > then i have this error: > pftcl -e -f /etc/pf.conf > pfctl: fopen(/etc/pf.os): No such file or directory Ok i'm just so busy and brain holed that if forget the upgrade pb so i read FAQ now ;) http://w

upgrade pb

2003-11-02 Thread marc
hello everyone i just upgrade to obsd 3.4 then i have this error: pftcl -e -f /etc/pf.conf pfctl: fopen(/etc/pf.os): No such file or directory but the file exists , and try a fsck...but nothing thanks.

Re: Live Bandwidth Stats

2003-11-02 Thread Tiago Pierezan Camargo
On Fri, 31 Oct 2003 12:02:32 -0700, Colin Harford <[EMAIL PROTECTED]> wrote: > I am after is something from the cli. > Does anyone know of a good way to do this, without going with altq? Maybe you wanna try ntop (a CLI version is available in the ports collection) o

Re: pf/alq Problems

2003-11-02 Thread Tiago Pierezan Camargo
Hi Shane, Could you please attach your complete rulerset? I wanna see your pass in rules and check for any keep state using the wrong queue. Also, how do you know that it isnt working? pfctl -vvsq? Tiago On Sun, 2 Nov 2003 01:54:32 +0200, "Shane James" <[EMAIL P

latest snapshot, pf blocks until reloaded

2003-11-02 Thread Han Boetes
Hi, With the latest snapshot (01-11-03) I got the following: >From my linux desktop to my openbsd (dhcp)server I got an ip-address via dhcp. ``ifconfig eth0'' and ``route -an'' on the desktop looks totally normal. ``ifconfig ep0;; and ``route -an'' and ``pfctl -s all'' on the openbsd machine also

pf.conf

2003-11-02 Thread renzetti
Hi! I have of the probles whith PF. I have put in the file pf.conf this rule, as Daniel had said to me! block all pass in proto TCP from any to 2001:760:2:1::2/128 port 80 keep state _ | http | ___