Hi All!
I would like to make service check with hping. I use the following command
to check the service is running:
hping -S -c 1 -p 22 ip_address
During this check hping sends a Syn, host sends back a SynAck, after that
hping sends a RST. But this reset never arrives to the destination and the
tcp session is stuck in for a while. As I see, the "scrub in" command blocks
the RST. Is there anybody, who can tell me why pf blocks this packet?
I have tried to pass this checks from different machines on the firewall, but I
can only pass one host. The no scrub command does not worked to me ( no scrub
in to {$HOST_IP1, $HOST_IP2}). :(
When I try more than one ip address with following way (scrub in to {!
$HOST_IP1, !$HOST_IP2} ), then just the first address is passed. (I think
that is because of the first matching rule win)
Is anybody know, how to disable scrubbing for more than one host?
Tamas
