Date: Sat, 8 Mar 2008 08:19:26 -0300 From: "Alaor Barroso de Carvalho Neto" <alaorneto@gmail.com> To: "Preston Hagar" <prestonh@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Please help me with my PF config Message-ID: <2949641c0803080319i130b3ee9w95664e644d73572c@mail.gmail.com> In-Reply-To: <8f5897560803071137k5be64b92j2a2de604661cb83e@mail.gmail.com> References: <2949641c0803060554q2ecba5e7g7920bf0b252277c9@mail.gmail.com> <47D00412.40803@locolomo.org> <2949641c0803061002t1861694ajb5ce75559a23bc33@mail.gmail.com> <8f5897560803071137k5be64b92j2a2de604661cb83e@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
2008/3/7, Preston Hagar <prestonh@gmail.com>: > > It looks like you already have your problem solved. One utility you > might want to look at is pftop. With it, you can see pretty much in > real time what is going through pf and what is being blocked. This > has helped me a lot to find out which rule in blocking something I > need to let through. If you run pftop, then hit the right arrow key, > it will have the rule that is being applied for a given connection on > the far right-hand side. If you hit SHIFT+S it will order the > connections by source ip to help you find what you are looking for. > Once you have the rule number that is blocking the connection you need > to let through, hit the right arrow 4 more times to see the list of > rules and their corresponding numbers. > > It may or may not be of much use to you, but I have found pftop to be > indispensable when setting up pf firewalls. > > Preston > It looks great. I was looking for something like this because I would like to see what is happening in the network. I'm gonna install this on monday. Thankz for the tip. Hugs, Alaor Neto.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2949641c0803080319i130b3ee9w95664e644d73572c>