On 8/31/07, Eugen Leitl <[EMAIL PROTECTED]> wrote: > On Fri, Aug 31, 2007 at 11:48:07AM +0200, Eugen Leitl wrote: > > > > I'm defining firewall rules according to > > http://pfsense.trendchiller.com/transparent_firewall.pdf > > but they seem to get ignored. There's a comment which says > > the logic is now reversed -- before I lock myself out, can > > someone confirm or deny this (that I need to define things on > > WAN tab instead of LAN tab in Firewal->Rules)? > > Strange, whatever I do I get no change: > > # pfctl -s rules > pass quick proto carp all keep state > pass quick proto pfsync all > pass out proto tcp from any to any port = domain keep state > pass out proto udp from any to any port = domain keep state > > Any ideas?
If those are all the rules you have, we must have loaded the fallback (bootup) ruleset. Try a pfctl -nf /tmp/rules.debug and post the output and the rule file here (or send me the rule file - billm at pfsense.org - if you don't want it in a public forum). Sounds like we have a rule creation problem. Thanks --Bill
