[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PF and Raptor SMTP gateway incompatible?

To: Dries Schellekens <gwyllion@ace.ulyssis.org>
Subject: Re: PF and Raptor SMTP gateway incompatible?
From: Marco Radzinschi <marco@radzinschi.com>
Date: Sun, 16 Jun 2002 18:30:35 -0400 (EDT)
Cc: <misc@openbsd.org>

On Sun, 16 Jun 2002, Dries Schellekens wrote:

> On Sun, 16 Jun 2002, Marco Radzinschi wrote:
>
> > I want to thank everyone for responding to this, in particular Mike
> > Lewinski for the tcpdump and Darren Reed for some insight.
> >
> > >From what I understand of this, the return-rst fix may or may not work on
> > OpenBSD 3.1's pf, correct?
> >
> > I will try to get it to work, but if it does not work, it seems I have
> > three options:
>
> It will work with the return-rst rule. An other option is to add a
> stateless rule, so no keep state.


I have the following rules:

block in on xl0 all
pass out quick on xl0 all keep state

If I don't use keep state, how will the packet filter know to allow
packets to come back in?

- Marco Radzinschi

References:
- Re: PF and Raptor SMTP gateway incompatible?
  - From: Dries Schellekens <gwyllion@ace.ulyssis.org>

Prev by Date: Re: Is this wireless setup plausible?
Next by Date: Re: Is this wireless setup plausible?
Prev by thread: Re: PF and Raptor SMTP gateway incompatible?
Next by thread: Re: PF and Raptor SMTP gateway incompatible?
Index(es):
- Date
- Thread