Date: Fri, 2 Mar 2007 09:56:14 -0000 From: "Greg Hennessy" <Greg.Hennessy@nviz.net> To: "'Tom Judge'" <tom@tomjudge.com> Cc: freebsd-pf@freebsd.org Subject: RE: Tracing packets passing through PF Message-ID: <001901c75cb1$040435a0$0c0ca0e0$@Hennessy@nviz.net> In-Reply-To: <45E7F00B.6010306@tomjudge.com> References: <45E75454.2060302@tomjudge.com> <000601c75ca1$b4d7a570$1e86f050$@Hennessy@nviz.net> <45E7F00B.6010306@tomjudge.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > I actually need to see how a packet that the IPSEC code generates is > passes through PF (What rules it is (not) matching etc). At the moment > it seems that it is either a) not passing through pf at all, b) For > some > reason not matching the source routing rule. > > Is there anyway to see this, possibly by setting debuging to loud > (pfctl > -x loud) ? Are you filtering on the loopback by any chance ? Or have you set skip on lo0 ? Greg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?001901c75cb1$040435a0$0c0ca0e0$>