I hate windoze

[Bryan Irvine <bryan_(_dot_)_irvine_(_at_)_kingcountyjournal_(_dot_)_com>]

My Windows box was owned and is being used for a divx server.

I'm trying to close the hole with pf by doing a block all but it's not
working

I have a block all rule in the pf.conf then a bunch of pass in rules,
but whenever the block rule is active I lose everything.

Here's my pf.conf
=================================

WAN = "xl0"
LAN1 = "xl1"
LAN2 = "xl2"
DMZ = "xl3"

scrub in all

nat on xl0 inet from 192.233.103.0/24 to any -> (xl0)
nat on xl0 inet from 192.168.0.0/24 to any -> (xl0)


# spamd-setup puts addresses to be redirected into table <spamd>
#table <spamd> persist
#no rdr on { lo0, lo1 } from any to any
#rdr inet proto tcp from { <spamd> } to any port smtp -> 127.0.0.1 port
8025

# filter rules: the implicit first two rules are
pass in all
pass out all


# block all incoming packets but allow ssh, pass all outgoing tcp and
udp
# connections and keep state, logging blocked packets.
#block in log all
pass  in  on $WAN proto tcp from any to $WAN port 22 keep state
pass  out on $WAN proto { tcp, udp } all keep state

pass in on $WAN proto tcp from any to $DMZ port 20 keep state
pass in on $WAN proto tcp from any to $DMZ port 21 keep state
pass in on $WAN proto tcp from any to $DMZ port 80 keep state
pass in on $WAN proto tcp from any to $DMZ port 5900 keep state
pass in on $WAN proto tcp from any to $DMZ port 8000 keep state
pass in on $WAN proto tcp from any to $DMZ port 8001 keep state
pass in on $WAN proto tcp from any to $DMZ port 8100 keep state