iggd...@gmail.com wrote:
I haven't been running pfsense for a while, I'm just very familiar
with how pf thinks as a firewall. But if I remembner right the state
table is under some kind of status or tools menu. There ought to be a
utility in there to kill states. if pfctl works from the co
I haven't been running pfsense for a while, I'm just very familiar with how
pf thinks as a firewall. But if I remembner right the state table is under
some kind of status or tools menu. There ought to be a utility in there to
kill states. if pfctl works from the command line, do pfctl -k {targ
ok, so after a few minutes, it looked like the firewall rules were
implemented. even though they had taken effect, the traffic was still
going by
now im gonna try to block the >>> outside ips that it was being mal
with, so that still has connectivity, but just not to whatever it was
doing th
I have done that, i think iggdawg suggested that if the states are
already started, that the firewall wont block them.
how do i stop the current activity? wihtout rebooting of course ;)
-chris
-
To unsubscribe, e-mail: support-
it sounds like you're running into a state table issue then. set up the
rules you think you need to block him, then kill any states with his IP on
it.
On Sat, Sep 26, 2009 at 6:18 PM, Chris Flugstad wrote:
> Well the MAL ip is on the LAN int, i have public IP's on my LAN side.
>
> the user on t
Well the MAL ip is on the LAN int, i have public IP's on my LAN side.
the user on this residential service has had 15mbits symmetrical for the
last 48 hours.
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For addit
On Sat, Sep 26, 2009 at 11:12 PM, Chris Flugstad wrote:
>
> I tried on WAN int with the destination of the LAN IP that is maliscious.
> no dice. its still getting traffic through. tried on LAN int with
> blocking single host (lan ip of mal ip) as the destination
>
You need one on WAN for inbou
oh... try blocking on the WAN int based on the source IP.so... block
in on $ext_if ip from {badguy} to any.
On Sat, Sep 26, 2009 at 6:12 PM, Chris Flugstad wrote:
> Chris Buechler wrote:
>
>> On Sat, Sep 26, 2009 at 11:04 PM, Chris Flugstad
>> wrote:
>>
>>
>>> I have public IP's on my LA
Is there a way to only traffic shape 1 ip address? or put him through a
tiny straw for the time being?
-chris
-
To unsubscribe, e-mail: support-unsubscr...@pfsense.com
For additional commands, e-mail: support-h...@pfsense.com
Also keep in mind that pf evaluates the state table before any rules, and if
there's a remaining state for the IP address it will still have access even
if you add a block rule. You need to kill any remaining states for that IP
after adding the rule, and I'm not sure if pf does this automagically.
Chris Buechler wrote:
On Sat, Sep 26, 2009 at 11:04 PM, Chris Flugstad wrote:
I have public IP's on my LAN and outbound NAT off. I have a ip address that
is somewhat malicious and needed to block traffic to and from it.
i tried making fw rules but that didnt work
any ideas?
That's
On Sat, Sep 26, 2009 at 11:04 PM, Chris Flugstad wrote:
> I have public IP's on my LAN and outbound NAT off. I have a ip address that
> is somewhat malicious and needed to block traffic to and from it.
> i tried making fw rules but that didnt work
>
> any ideas?
>
That's all you need to do. Make
I have public IP's on my LAN and outbound NAT off. I have a ip address
that is somewhat malicious and needed to block traffic to and from it.
i tried making fw rules but that didnt work
any ideas?
-
To unsubscribe, e-mail: s
13 matches
Mail list logo
