Re: Broken pfctl ..... ? I not understand my

Patrick Lamaiziere Thu, 26 Jul 2012 01:51:22 -0700

Le Thu, 26 Jul 2012 12:44:40 +0430,
Bahador NazariFard <[email protected]> a écrit :


> "block in quick on msk0 proto tcp *to* port ssh"
> whats this?
> 
> "instead of above wrong statement, you can use "block in quick on msk0
> proto tcp  from any to any port ssh"

This is the same thing. The from is optional, and adresse is also
optional in the from/to. 

So "block in quick on msk0 proto tcp to port ssh" is valid and is
expanded by pfctl to "block drop in quick proto tcp from any to any port
= 22"

Re: Broken pfctl ..... ? I not understand my

Reply via email to