Hello Daniel, Monday, November 11, 2002, 3:18:44 PM, you wrote:
>> Any Ideas? I don't have any :-( DH> The snort box isn't replying to the packets, is it? If those packets DH> reach its stack, the stack might try to forward them or reply with RSTs, DH> thus disturbing the handshake (when such packets get back to the pf DH> box). Can you tcpdump and look for replies, or block them from being DH> sent by the snort box? Doohhhh! iptables -P INPUT DROP on the linux box and block out quick on $IFACE_ids all block in quick on $IFACE_ids all on the open bsd box does the job. Thanks for the efficient and fast help :) Richard PS: pf rulez :) -- Best regards, Richard mailto:mueller@;teamix.net
