Hello there,
I posted previously my doubt with the follow subject: "4.7 and ftp-proxy"
I don't know what are occurring.
I have the follow rules:
table <ftp> { address1, address2, address3 }
table <ftppriv> { internal_addr1, internal_addr2 }
pass in quick on $int_if proto tcp from <ftppriv> to port 21 rdr-to
127.0.0.1 port 8021
pass in quick on $int_if proto tcp from $int_inet to <ftp> port 21 rdr-to
127.0.0.1 port 8021
anchor "ftp-proxy/*"
block log all
...
pass in on $int_if proto tcp from 10.1.1.5
>From pf.conf man page :
"For each packet processed by the packet filter, the filter rules
are evaluated in sequential order, from first to last."
quick If a packet matches a rule which has the quick option set, this
rule is considered the last matching rule, and evaluation of
sub-
sequent rules is skipped.
because of this rule "pass in on $int_if proto tcp from 10.1.1.5" , this
address 10.1.1.5 are accessing every ftp place.
If I remove this rule, so it work as expected.
Why ?
Please can someone explain to me the reason for this?
Thanks in advanced
