Date: Thu, 16 Nov 2006 12:28:32 -0600 From: "Travis H." <travis@subspacefield.org> To: Andrei Kolu <antik@bsd.ee> Cc: freebsd-pf@freebsd.org Subject: Re: problems connecting samba shares Message-ID: <20061116182832.GA14170@nexus.subspacefield.org> In-Reply-To: <200611162011.21765.antik@bsd.ee> References: <56217.24.161.8.173.1159492654.squirrel@mail.poklib.org> <200611151910.53727.antik@bsd.ee> <20061116100307.GC32666@nexus.subspacefield.org> <200611162011.21765.antik@bsd.ee>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Nov 16, 2006 at 08:11:21PM +0200, Andrei Kolu wrote: > Yes, I understand that SMB is bad, but why PF blocks port that is opened with > rules? > > /etc/pf.conf: > pass in on rl0 proto udp from any to (rl0) port 137 keep state > > # tcpdump -n -e -ttt -i pflog0: > rule 0/0(match): block in on rl0: 192.168.2.100.137 > > 192.168.2.101.53259: NBT UDP PACKET(137): QUERY; POSITIVE; RESPONSE; UNICAST Your rule passes IN packets TO *DESTINATION* port 137 The packet you are blocking is coming IN, FROM *SOURCE* port 137 If that isn't clear enough, I can't help you, you need to read a book on firewalls or TCP/IP. -- "Cryptography is nothing more than a mathematical framework for discussing various paranoid delusions." -- Don Alvarez <URL:http://www.subspacefield.org/~travis/>; -><-
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061116182832.GA14170>