>> Kernel (the standard one, from CD distribution):
>> FreeBSD mybox.ens.fr 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18
>> UTC 2004
>> [EMAIL PROTECTED]:/usr/obj/usr/src/sys/GENERIC i386
>>
>> I fail to have authpf working on FreeBSD 5.3.
>> I setup a pf.conf file ending with:
>> anchor "authpf/*"
>> 'pfctl -sr' displays correctly:
>> [ ... ]
>> anchor authpf/* all
>> 'pfctl -a authpf -s rules' displays:
>> No rulesets in anchor 'authpf'.
>> I run an ssh on a client, and then 'pfctl -a authpf -s rules' displays:
>> (a poor rule just for test):
>> pass in quick on bge1 inet proto tcp from 1.2.3.4 to any
The answer: add 'keep state':
pass in quick on bge1 inet proto tcp from 1.2.3.4 to any keep state
--
Jacques Beigbeder | [EMAIL PROTECTED]
Service de Prestations Informatiques | http://www.spi.ens.fr
Ecole normale sup�rieure |
45 rue d'Ulm |Tel : (+33 1)1 44 32 37 96
F75230 Paris cedex 05 |Fax : (+33 1)1 44 32 20 75
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
