eric wrote:
On Fri, 2005-12-30 at 14:18:32 -0500, Forrest Aldrich proclaimed...
I ran this and got nothing.
I must have done something wrong... ?
YEs, flush and reload the table or IP address into the table. See the pfctl
man page for instructions on how to do this.
Yes, as Daniel said, when you've modified your abuse file,
it's best to reload it by doing:
pfctl -t abuse -Tr -f /etc/pf.d/abuse
You do NOT want to flush the table before. This is bad
advice since it creates a window of time during which
"abusive" packets will be allowed to enter your network.
The "pfctl -Tr" command will do the update smartly without
opening up the firewall during the replacement proceess.
Cedric
