2009/5/1 dug <[email protected]>: 0> 1> #Allow SMTP, HTTPS 2> pass quick proto tcp from any to {<public-ip> <mail-server>} port 25 3> pass quick proto tcp from any to {<public-ip> <mail-server>} port 443 4> pass quick proto tcp from {<public-ip> <mail-server>} port 25 to any 5> pass quick proto tcp from {<public-ip> <mail-server>} port 25 to any 6> pass quick proto tcp from any port 25 to {<public-ip> <mail-server>} 7> pass quick proto tcp from {<public-ip> <mail-server>} to any port 25
Line 4 and 5 are identical. Presumably you wanted to write port 443 in line 5? > On pflog0 interface, I have these logs : > > # tcpdump -vvveni pflog0 > tcpdump: listening on pflog0, link-type PFLOG > block in on em0: mail-server.443 > 149.6.161.125.58350: [|tcp] (ttl 63, id > 49121, len 40) That's understandable, given that your line 5 currently says port 25 instead of port 443. > > block in on em0: mail-server.59902 > 81.255.99.202.25: [|tcp] (ttl 63, id > 14511, len 40) > > block in on em0: mail-server.59902 > 81.255.99.202.25: [|tcp] (ttl 63, id > 40161, len 52) > Not sure what's going on here; line 7 should match these. > block in on em0: mail-server.25 > 81.28.185.240.1777: [|tcp] (ttl 63, id > 4151, len 41) > Not sure what's going on there; line 4 (and, currently, 5) should match these. regards, --ropers
