On 6/15/05, Nikolay Kalev <[EMAIL PROTECTED]> wrote: > I have a few question about pf. > When i do "tcpdump -netttv -i pflog0" with it i get the rule number > which blocked the current packet. Is this the actual number in the > "/etc/pf.conf" file or actual number in "pfctl -s rules" ? Is rules like > scrub or set limit for example counted, are this rule numbers after the > rules are optimized ? Is there a way to see the rule number and actual > rule with "pfctl" command :-)))?
You're so close... pfctl -vvs rule shows the rule numbers, which becomes really handy with the new optimizer. -- Jon Simola Systems Administrator ABC Communications
