Date: Tue, 1 Mar 2005 17:33:46 +0100 From: Jacques Beigbeder <Jacques.Beigbeder@ens.fr> To: FreeBSD Mailing List <freebsd-questions@freebsd.org> Subject: authpf on FreeBSD 5.3 : the answer Message-ID: <20050301163346.GA4159@trefle.ens.fr>
next in thread | raw e-mail | index | archive | help
>> Kernel (the standard one, from CD distribution): >> FreeBSD mybox.ens.fr 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004 >> root@harlow.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 >> >> I fail to have authpf working on FreeBSD 5.3. >> I setup a pf.conf file ending with: >> anchor "authpf/*" >> 'pfctl -sr' displays correctly: >> [ ... ] >> anchor authpf/* all >> 'pfctl -a authpf -s rules' displays: >> No rulesets in anchor 'authpf'. >> I run an ssh on a client, and then 'pfctl -a authpf -s rules' displays: >> (a poor rule just for test): >> pass in quick on bge1 inet proto tcp from 1.2.3.4 to any The answer: add 'keep state': pass in quick on bge1 inet proto tcp from 1.2.3.4 to any keep state -- Jacques Beigbeder | Jacques.Beigbeder@ens.fr Service de Prestations Informatiques | http://www.spi.ens.fr Ecole normale supérieure | 45 rue d'Ulm |Tel : (+33 1)1 44 32 37 96 F75230 Paris cedex 05 |Fax : (+33 1)1 44 32 20 75
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050301163346.GA4159>