Hi,
I'm running pf on an intel box running OpenBSD3.0 with 256mg ram. I've read through documentation and examples numerous times...I believe my ruleset is correct, but I can't seem to get things running properly. Here is my ruleset: block in log all pass out all pass in on fxp0 proto icmp from any to any pass in on fxp0 proto tcp from any to any port = 53 pass in on fxp0 proto udp from any to any port = 53 pass in on fxp0 proto tcp from cc.cc.cc.cc to any pass in on fxp0 proto udp from cc.cc.cc.cc to any pass in on fxp0 proto tcp from any to aa.aa.aa.aa port = 22 pass in on fxp0 proto tcp from any to bb.bb.bb.bb port = 22 pass in on fxp0 proto tcp from any to cc.cc.cc.cc pass in on fxp0 proto tcp from any to dd.dd.dd.dd basically, anything other than ssh and icmp to my firewall box gets caught by the block in rule. example from my logs: Mar 01 13:50:22.976540 rule 0/0(match): block in on fxp0: aa.aa.aa.aa.22 > 64.14.81.125.40123: P 0:52(52) ack 61 win 6432 (DF) [tos 0x10] anything to any box behind my firewall gets caught by rule 0. When the firewall is off, all traffic passes correctly. I have all of the machines in question going into a switch (including the firewall) and all of the machines using the firewall as a gateway. Now, I am more familiar with the likes of Checkpoint and Raptor. This is my first foray into pf. Can anyone see what I'm doing wrong? -- 0 +++++++++++++++++++++++++++++++++++++++++++++++++ nullpoint.net + allourillusions.net + aumlaut.net +++++++++++++++++++++++++++++++++++++++++++++++++ "Hello, Rabbit," he said. "Is that you?" "Let's pretend it isn't," said Rabbit, "and see what happens." A.A. Milne, Winnie the Pooh _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
