Hello,
On Mon, Aug 28, 2023 at 06:30:55PM +0200, Peter J. Philipp wrote:
>
> Hi Alexandr,
>
> root@stern# tcpdump -v -n -i pppoe0 -c 1 icmp && pfctl -ss -v | grep icmp
> tcpdump: listening on pppoe0, link-type PPP_ETHER
> 18:25:34.273661 192.168.177.13 > 49.12.42.182: icmp: host 7.198.187.211
> unreachable [icmp cksum ok] (ttl 63, id 60642, len 96)
> root@stern#
>
> No state. Though it's weird that this packet makes it out despite?
it depends on rules loaded to pf(4). how 'pfctl -sr' looks like
on your firewall?
if there is no rule which blocks outbound icmp then packet leaves
as is.
regards
sashan
