On Thu, Jan 21, 2016 at 10:14:25AM +0100, Marko Cupa?? wrote: > Or even better, start with 'block log', and inspect blocked traffic in > real time with: > # tcpdump -n -e -q -ttt -i pflog0
Very true. Or even add log (all) to all rule if you want all packets. The main point remains, logging is essential to debugging, which is what the original poster needs to do. -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
