Re: Wrong rule number in pflog with anchors

"trondd" wrote: > If you have an anchor in your pf ruleset, a packet that matches a rule > with a log directive will reflect the rule number of the last anchor > definition instead of the rule that caused the logging. > > My first rule in pf.conf is 'block log (all)

Wrong rule number in pflog with anchors

If you have an anchor in your pf ruleset, a packet that matches a rule with a log directive will reflect the rule number of the last anchor definition instead of the rule that caused the logging. My first rule in pf.conf is 'block log (all) all'. In 6.1, packets matching the block rule will show