View Single Post
  #5   (View Single Post)  
Old 23rd November 2015
jasonvp's Avatar
jasonvp jasonvp is offline
Real Name: Jason
Port Guard
Join Date: Nov 2015
Location: Northern VA
Posts: 15

Originally Posted by jggimi View Post
If you only have one block, then the pass rule with tables is not matching...
I figured it out using the log, so thank you for that. It turns out the connection wasn't sourcing nor terminating on the jail's loopback ( IP address. It was sourcing and terminating on the jail's public IP, even though sendmail's config tells it to use the loopback.

So I added a pf line on the host:
pass in quick proto tcp from <riddler> to <riddler>
(riddler is the jail in question, defined further up in the file)

and voila: it works. The very strange this is: I'm not exactly sure how it was working prior to the tables because the macro version should have dropped it as well.

I'm going to chalk this up to me being ignorant. Thanks for the suggestions and guidance!
Reply With Quote