referencing the table. The time
at which the current accounting started is also shown with the
``Cleared'' line.
# pfctl -t test -vTshow
129.128.5.191
Cleared: Thu Feb 13 18:55:18 2003
I have a freebsd box and pf Works on it.
I wish to see use of data for each ip address.
When i execute pfctl -t tablename -vT showI can see usages of these
ips. Pfctl lists all of ips.
But how can i filter it for each ip address ? because i want to insert
these data for each ip
I have a freebsd box and pf Works on it.
I wish to see use of data for each ip address.
When i execute pfctl -t tablename -vT showI can see usages of these
ips. Pfctl lists all of ips.
But how can i filter it for each ip address ? because i want to
insert these data
Hi Everybody,
Recently I've discover the following issues: I can't display my firewalls
rules, and the firewall is enabled.
Take a look what is happening:
ktulu# pfctl -s rules
No ALTQ support in kernel
ALTQ related functions disabled
ktulu# pfctl -e
No ALTQ support in kernel
ALTQ related
On Nov 30, 2012, at 12:02 PM, Laszlo Danielisz laszlo_daniel...@yahoo.com
wrote:
Hi Everybody,
Recently I've discover the following issues: I can't display my firewalls
rules, and the firewall is enabled.
Take a look what is happening:
ktulu# pfctl -s rules
No ALTQ support
Hello,
If I need to recompile pfctl and snmp_pf, would I run 'make clean',
'make', and 'make install' in /usr/src/usr.sbin/bsnmpd/modules/snmp_pf
and /usr/src/sbin/pfctl? Is either of the directories incorrect
or some other combination of make calls required there?
Thank you,
Darrel
Hello,
If I need to recompile pfctl and snmp_pf, would I run 'make clean',
'make', and 'make install' in /usr/src/usr.sbin/bsnmpd/modules/snmp_pf
and /usr/src/sbin/pfctl? Is either of the directories incorrect
or some other combination of make calls required there?
Oh, forgot to mention
Hi,
I am looking to track the number of syn packets coming into a system,
as the box in question has pf running and using the synproxy attribute
on tcp services, I hope to be able to use the synproxy field in pfctl
-si. However I cant find a definitive definition of the variable, Ive
looking
well, beforestarting over from scratch with the FBSD dvd, i
tried the pc-bsd website and forum. the voodoo string, as
root, is pfctl -d [i assume that the `-d' == disable. by
default the pf firewall was on. my fault for not having
checked /etc/rc.conf
I'm running tests on a few congestion control schemes which use pfctl to
activate the respective queue controller. This works fine on interfaces
with a fixed capacity as altq sets up the respective queue taking the
bandwidth into consideration. On wireless interfaces however this
capacity varies
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello all,
I'm wondering if there is a wildcard that can be used in conjunction
with pfctl -k.
Specifically, if I wanted to kill states from any number of internal
machines to one external address. Basically a command such as:
pfctl -k any -k
with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that and
want to trigger a firewall rule to block that IP
Then after a couple of hours SEC will trigger the command to un-block
the
IP...
So what i need is the command
with
pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that
and
want to trigger a firewall rule to block that IP
Then after a couple of hours SEC will trigger the command to un-block
the
IP...
So what i need
trying to figure out how to add a firewall rule with
pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that
and
want to trigger a firewall rule to block that IP
Then after a couple of hours SEC will trigger the command
2007/9/15, Mel [EMAIL PROTECTED]:
On Saturday 15 September 2007 23:18:17 Agus wrote:
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that and
want to trigger a firewall
2007/9/15, Mel [EMAIL PROTECTED]:
On Saturday 15 September 2007 23:18:17 Agus wrote:
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that and
want to trigger a firewall
Agus wrote:
2007/9/15, Mel [EMAIL PROTECTED] [EMAIL PROTECTED]:
On Saturday 15 September 2007 23:18:17 Agus wrote:
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from
On Mon, Sep 17, 2007 at 11:30:03PM -0300, Agus wrote:
Agus wrote:
2007/9/15, Mel [EMAIL PROTECTED] [EMAIL PROTECTED]:
On Saturday 15 September 2007 23:18:17 Agus wrote:
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've
Hi list,
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that and
want to trigger a firewall rule to block that IP
Then after a couple of hours SEC will trigger the command
On Saturday 15 September 2007 23:18:17 Agus wrote:
I am trying to figure out how to add a firewall rule with pfctl...
This is what i'm trying to do...
I've got SEC that matches certain pattern and takes the IP from that and
want to trigger a firewall rule to block that IP
Then after
Hello,
Can you please help me troubleshoot pfctl problem.
I want to store table data in /etc/pfspammers so I created the file and
also put in the pf.conf table definition on line 18
table pfspammers persist file /etc/pfspammers
and added a rule to block tcp connections if an IP is in /etc
I want to store table data in /etc/pfspammers so I created the file and
also put in the pf.conf table definition on line 18
table pfspammers persist file /etc/pfspammers
and added a rule to block tcp connections if an IP is in /etc/pfspammers
When I reload pfctl, I get a warning:
No ALTQ
Dear Alex,
As for the actual error on line 18, if you review:
http://www.openbsd.org/faq/pf/tables.html
You'll see that the file name should be enclosed in quotes. If that
That was it! Thank you very much. I was consulting a PDF file where the
example was given without quotes.
Thanks!
--
Hello:
-Original Message-
From: [EMAIL PROTECTED] [mailto:owner-freebsd-
[EMAIL PROTECTED] On Behalf Of Daniel Gerzo
Sent: Wednesday, February 28, 2007 3:52 PM
To: freebsd-questions@freebsd.org
Subject: pfctl: DIOCSETSTATUSIF
Hello pf,
I'm having the following problem:
db2
Hello pf,
I'm having the following problem:
db2# pfctl -f /etc/pf.conf
No ALTQ support in kernel
ALTQ related functions disabled
pfctl: DIOCSETSTATUSIF
Exit 1
db2# uname -srm
FreeBSD 7.0-CURRENT #0: Wed Feb 28 23:47:39 CET 2007 amd64
pf related items in kernel:
device pf
device
At 12:51 AM 3/1/2007 +0100, Daniel Gerzo wrote:
Hello pf,
I'm having the following problem:
db2# pfctl -f /etc/pf.conf
No ALTQ support in kernel
ALTQ related functions disabled
pfctl: DIOCSETSTATUSIF
Exit 1
db2# uname -srm
FreeBSD 7.0-CURRENT #0: Wed Feb 28 23:47:39 CET 2007 amd64
pf related
Hello J.D.,
Thursday, March 1, 2007, 12:58:31 AM, you wrote:
At 12:51 AM 3/1/2007 +0100, Daniel Gerzo wrote:
Hello pf,
I'm having the following problem:
db2# pfctl -f /etc/pf.conf
No ALTQ support in kernel
ALTQ related functions disabled
pfctl: DIOCSETSTATUSIF
Exit 1
db2# uname -srm
FreeBSD
I've got all my queuing working like I want it to, but when I run
pfctl -vvsq, I get this (sample) output
queue root_dc0 bandwidth 256Kb priority 0 cbq( wrr root ) {tcp_ack,
dns, ssh, http, std, p2p}
[ pkts: 1018 bytes: 768010 dropped pkts: 0 bytes: 0 ]
[ qlength: 0
module is there (ls /sys/kernel/pf* gives meaningful
results), but /sbin/pfctl is missing. Do I have to rebuild world in
order to enable it or is something wrong with my kernel configuration? I
tried to build it with both NOINET6 turned on and off with same results.
Thanks a lot for your help
that the kernel module is there (ls /sys/kernel/pf* gives meaningful
results), but /sbin/pfctl is missing. Do I have to rebuild world in
order to enable it [...]? [...]
Yes.
Björn
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org
30 matches
Mail list logo
