I am testing the new feature that is find really cool, which is tagging and recognizing tagged packets. But i am not getting it work right.
I have a very simple test-scenarion 2 hosts, 1 ping session: 10.10.10.10-----------------------10.10.10.11 here is the pf code on host 10.10.10.11 /////////////////////////////////////////// #Block everything block in all block out all #let in only packets tagged with string "INT", and tag packets going out with "INT" pass in quick from 10.10.10.10 to any tagged INT keep state pass out quick from any to 10.10.10.10 tag INT keep state //////////////////////////////////// and on host 10.10.10.10: #Block everything block in all block out all #let in only packets tagged with string "INT", and tag packets going out with "INT" pass in quick from 10.10.10.11 to any tagged INT keep state pass out quick from any to 10.10.10.11 tag INT keep state //////// Now once i use tag or tagged, the ping goes out but does not come back: # tcpdump host 10.10.10.10 tcpdump: listening on fxp0 00:35:59.957056 10.10.10.10 > 10.10.10.11: icmp: echo request 00:36:00.967058 10.10.10.10 > 10.10.10.11: icmp: echo request 00:36:01.977063 10.10.10.10 > 10.10.10.11: icmp: echo request 00:36:02.987053 10.10.10.10 > 10.10.10.11: icmp: echo request 00:36:03.997073 10.10.10.10 > 10.10.10.11: icmp: echo request 00:36:05.007075 10.10.10.10 > 10.10.10.11: icmp: echo request where in my pf.conf did i go wrong? Cheers
