Well FYI,
the very same problem appear on czech openbsd mailing list. Reader did
complain that one windows station could ping through pf openbsd
firewall, but the second could not (see this
http://openbsd.cz/pipermail/users/2005-July/001051.html, in czech
language however you could clearly spot
Martin Lexa [EMAIL PROTECTED] wrote:
Side question, how can I filter on enc0?
tcpdump -i enc0 icmp, for example, isn't working. Probably with
-E option... ?
tcpdump -i enc0 proto 1 ( works for me on xl0 interface so I hope
it will work on enc0 as well).
Petr R.
RST with valid
addresses and ports could change state on the firewall but host
will drop it, so firewall will close the connection (after some time)
but it still will look like established on both hosts.
Could someone put more light on it ?
Thanks a lot
Petr Ruzicka
Hi,
considering new MP support in OpenBSD, does it somehow help for high-speed
firewalling ?
Thanks
Petr R.
[EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
James Cammarata writes:
...This of course has many
inherent risks so it's definitely just a thought right now, but Cisco does
it and I'll be damned if they do something we can't do ;)
Just becuase Cisco is doing doesn't mean they are doing it
Henning Brauer [EMAIL PROTECTED] wrote:
* Ed White [EMAIL PROTECTED] [2004-01-23 20:34]:
What is the opinion of PF developers here in ml ?
don't like.
limiting bytes per state is useless. bytes total and the like are not
pf's business, it's the business of some daemon that removes/changes