Hello,
1) Thanks to all of you for helping !!!
2) The problem was solved by chaning the nat rule:
-nat on $ext_if from {$localnet,$wifinet} to any -> ($ext_if)
+nat on $ext_if inet from ! ($ext_if) to any -> ($ext_if)Kind regards Didier > Didier Wiroth wrote: > > > I configured ntpd on the soekris box to sync the time, but the > > traffic is blocked and I do not understand why. > > > I have the following rule (the entire pf.conf is below): > > pass out quick on $ext_if inet proto udp from ($ext_if) to any \ > > keep state > > Shouldn't this rule allow the ntp traffic to pass through? > > > # TABLES SECTION # > > table <bad_hosts_ssh> persist > > table <hostile> persist > > table <wifi> > > > ### LOCALHOST OK #### > > block quick from <bad_hosts_ssh> > > block quick from <hostile> > > block quick inet6 all > > block log (all) all > > What's in the <bad_hosts_ssh> and <hostile> tables? > > > pass out quick on $ext_if inet proto udp from ($ext_if) to any \ > > keep state > > Will it work if you put it as the first rule? > > /Alexander
