Seems like pf skips some packets.
Alexey Sopov
adler at smtp.ru
Sun Jul 15 11:06:21 UTC 2007
>> Setting are loaded in pf via /etc/rc.d/pf start
>>
>> Why do these things differ?
EC> These are the timeout settings for "set optimization aggressive". If
EC> it appears after your set timeout lines, then it will take
EC> precedence. If this doesn't appear within your pf.conf, then this
EC> probably isn't the pf config file it's loading. If so, that may
EC> explain your issue with the unblocked packets as well.
Right. I've changed back to "set optimization normal" and now settings
from file and in pf match.
There are still unblocked packets.
Provider asked me to block them, else he will block whole my network
:(
--
mailto:adler at smtp.ru
More information about the freebsd-stable
mailing list