Date: Sun, 12 Mar 2006 11:30:07 +0100 From: Remko Lodder <remko@FreeBSD.org> To: "Jacob, Raymond A Jr" <raymond.jacob@navy.mil> Cc: freebsd-pf@freebsd.org Subject: Re: Two(2) questions regarding quick and adding rules later. Message-ID: <4413F82F.30608@FreeBSD.org> In-Reply-To: <653C8E7D21FB654997909E77C691053F45B0E7@NAEAWNYDEX21VA.nadsusea.nads.navy.mil> References: <653C8E7D21FB654997909E77C691053F45B0E7@NAEAWNYDEX21VA.nadsusea.nads.navy.mil>
next in thread | previous in thread | raw e-mail | index | archive | help
Jacob, Raymond A Jr wrote:
> So you are saying if I have just one quick statement the last rule
> matching i.e. block log all wins?
>
> Thank you,
> Raymond
Basically he is saying:
block log all
pass in quick <whatever>
which represents: Block all traffic and log that unless we hit some
other rule that we match. The pass in quick rule will get the matching
packet from the queue and process it. If it does not match the pass in
quick rule it will continue down the queue of rules and if nothing
matches he reverts to the match he had at the top "block log all".
Hope this makes it a bit easier to understand,
Cheers,
Remko
--
Kind regards,
Remko Lodder ** remko@elvandar.org
FreeBSD ** remko@FreeBSD.org
/* Quis custodiet ipsos custodes */
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4413F82F.30608>