On Mon, Jan 25, 2010 at 7:12 AM, Aurelien Jarno <[email protected]> wrote: > [email protected] a écrit : >> Package: kfreebsd-image-7.2-1-486 >> Version: 7.2-11 >> Severity: grave >> Justification: renders package unusable >> >> pf ignores any and all rules configured in /etc/pf.conf, even after being >> told to reload the ruleset with pfctl -f /etc/pf.conf. >> >> I've tested this by blocking all traffic with the pf rule: >> block all >> and sshing in and out of the system, as well as running iperf. >> >> I've tested this by explicitly blocking ssh traffic >> block in quick on em0 inet proto tcp from any to any port 22 >> and sshing in >> >> I've tested this by explicitly blocking iperf traffic (tcp port 5001 by >> default) >> block out quick on em0 inet proto tcp from any to any port 5001 >> and running iperf as a client on this system >> >> The pf module is loaded, and I did in fact reload the rules with pfctl -f >> /etc/pf.con >> prior to each test. I even did a pfctl -s rules and the running config >> aligned >> with the rules I set each time. >> > > This is not something I am able to reproduce here. Have you enable pf > with "pfctl -e"? > > -- > Aurelien Jarno GPG: 1024D/F1BCDB73 > [email protected] http://www.aurel32.net >
Looks like that was the issue. I'm sorry about the false bug report. -- -Will Orr -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
