IGMP with no matching rules
Jason Hellenthal
jhellenthal at dataix.net
Sun May 5 05:28:47 UTC 2013
Wow I can't believe I skipped over that option.
pass quick proto igmp allow-opts
Did it perfectly!!!!
Thank you Florian
--
Jason Hellenthal
JJH48-ARIN
-(2^(N-1))
On May 4, 2013, at 9:44, Florian Smeets <flo at smeets.im> wrote:
> On 04.05.13 09:36, Jason Hellenthal wrote:
>> Hey Everyone,
>>
>> Has anyone seen IGMP traffic hit there pflog interface even if there
>> are no rules matching that tell it to log ?
>>
>> Anyone that has a pointer to eliminate the logging of the IGMP
>> traffic would be extremely helpful. This has been fairly frustrating
>> up to this point trying to either create a rule to catch it that does
>> not specify logging or eliminate rules that shouldn't be matching but
>> do.
>
> It would be easier to tell with your rule set, but I think this may be
> related to IP options, look for allow-opts in pf.conf(5).
>
> Florian
>
More information about the freebsd-pf
mailing list