Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 11 Mar 2006 09:37:56 -0000
From:      "Greg Hennessy" <>
To:        "'Jacob, Raymond A Jr'" <>, <>
Subject:   RE: Two(2) questions regarding quick and adding rules later.
Message-ID:  <000001c644ef$7ac4ace0$0301a8c0@vaio>
In-Reply-To: <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
> All traffic blocked unless I use quick.
> tcpdump -n -e -ttt -r /var/log/pflog
> showed traffic was blocked by the last rule unless I added 
> quick to pass rules.
> I thought the matching rules would have overiden the block rule?

If you don't use quick , the last matching rule wins. 

Make the very 1st rule 

block log all

And delete any non specific blocks further down. 


Want to link to this message? Use this URL: <$7ac4ace0$0301a8c0>