View Single Post
  #4   (View Single Post)  
Old 28th March 2010
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default

The ifconfig output from your first post shows 192.168.134.2 as the IP address of re0, and no IP for re1.
In your revised configuration, both re0 and re1 don't have an IP address. That could be a difference.

Re: set block-policy return

Just try it, it won't make your firewall less secure.

From the pf.conf man page, the block policy section
Code:
return           This causes a TCP RST to be returned for TCP pack-
                 ets and an ICMP UNREACHABLE for other types of
                 packets.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote