just curious how rule numbering in pf works:
Jan 23 17:52:16.173554 rule 18/0(match): block in on rl0: 216.12.209.51.4521 >
217.237.70.16.25: S 228476169:228476169(0) win 32120 <mss
1400,sackOK,timestamp 245081167 0,nop,wscale 0> (DF)
I know which rule that is in pf.conf:
block in log quick on $ext_if proto tcp from <spammers> to any port 25
however, I can't get to the point where I recognize this rule as number 18
neither within pf.conf or pfctl -sa
it should be rule number 17 within pf.conf after scrub, pass etc. and rule
nuber 21 produced with pfctl -sa
Can somebody enlighten me :- ?
thanks
--
. ___
| | Irmund Thum
| |
