Oups, read too fast.
You can name anchor even if those are optional. If you name them, you
should be able to access table inside of them via pfctl -a $anchor_name
-t admins -T show
For exemple for in-brace anchor with name :
http://www.openbsd.org/faq/pf/anchors.html
Le 2013-03-13 14:15, Maxim Khitrov a écrit :
On Wed, Mar 13, 2013 at 1:59 PM, Michel Blais <[email protected]> wrote:
I think you must specify the anchor first. Something like :
pfctl -a ix1 -t admins -T show
That doesn't work. First, it's an unnamed anchor, so I don't think you
can specify it with the -a option. Second, inbound connections to port
22 are rejected in the first case, but not in the second. The table is
removed as though it was unreferenced, so the pass rule in the anchor
doesn't match any source IPs.
- Max
--
Cordialement / Best regards
Michel Blais
Administrateur réseau / Network administrator
Targo Communications
www.targo.ca
514-448-0773
