Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 11 Mar 2006 09:37:56 -0000
From:      "Greg Hennessy" <Greg.Hennessy@nviz.net>
To:        "'Jacob, Raymond A Jr'" <raymond.jacob@navy.mil>, <freebsd-pf@freebsd.org>
Subject:   RE: Two(2) questions regarding quick and adding rules later.
Message-ID:  <000001c644ef$7ac4ace0$0301a8c0@vaio>
In-Reply-To: <653C8E7D21FB654997909E77C691053F446ADB@NAEAWNYDEX21VA.nadsusea.nads.navy.mil>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
> 
> All traffic blocked unless I use quick.
> tcpdump -n -e -ttt -r /var/log/pflog
> showed traffic was blocked by the last rule unless I added 
> quick to pass rules.
> I thought the matching rules would have overiden the block rule?

If you don't use quick , the last matching rule wins. 

Make the very 1st rule 

block log all

And delete any non specific blocks further down. 




Greg




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?000001c644ef$7ac4ace0$0301a8c0>