For the anchor removed if not persistent, I have already writed about
this. The answer from Henning :
http://marc.info/?l=openbsd-misc&m=133467818116146&w=2
Le 2013-03-13 14:15, Maxim Khitrov a écrit :
On Wed, Mar 13, 2013 at 1:59 PM, Michel Blais <[email protected]> wrote:
I think you must specify the anchor first. Something like :
pfctl -a ix1 -t admins -T show
That doesn't work. First, it's an unnamed anchor, so I don't think you
can specify it with the -a option. Second, inbound connections to port
22 are rejected in the first case, but not in the second. The table is
removed as though it was unreferenced, so the pass rule in the anchor
doesn't match any source IPs.
- Max
--
Cordialement / Best regards
Michel Blais
Administrateur réseau / Network administrator
Targo Communications
www.targo.ca
514-448-0773
