View Single Post
  #7   (View Single Post)  
Old 14th July 2013
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 7,977
Default

Quote:
I just made one up off the top of my head
You're not a FrontierNet customer?

Looking at your pf.conf, I can't help but wonder if PF has failed to load it, due to syntax errors. You haven't mentioned which release of FreeBSD you are using, and FreeBSD has used varying versions of PF, each with varying syntax. Following a 2006-era "howto" might have been a disservice.

# pfctl -sr will show you what rules are currently loaded. If the default rules are loaded instead of your pf.conf, then you'll know this is the reason. You can test your rules: # pfctl -nf /etc/pf.conf will do a syntax check. No output = good.

If your rules are syntactically correct, the next step would be to check to see which rules are being applied to your traffic. You do this by adding the log option to your block and your pass rules and then monitoring rule use traffic on the pflog0 device with tcpdump(1).
Reply With Quote