[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What am I doing wrong?



On Sat, Dec 20, 2003 at 02:59:51PM +0100, Peter GILMAN wrote:

-k host
             Kill all of the state entries originating from the specified
             host.  A second -k host option may be specified, which will kill
             all the state entries from the first host to the second host.
             For example, to kill all of the state entries originating from
             host:

                   # pfctl -k host

             To kill all of the state entries from host1 to host2:

                   # pfctl -k host1 -k host2

# pfctl -sa | grep 5190
tcp 64.12.28.36:5190 <- 192.168.1.65:2001       ESTABLISHED:ESTABLISHED

This to me looks like 192.168.1.65 is going to 64.12.28.36.  ie
192.168.1.65 is where the entries are originating from.

# pfctl -k 192.168.1.65
killed 12 states from 1 sources and 0 destinations
# pfctl -sa | grep 5190
tcp 64.12.28.36:5190 <- 192.168.1.65:2001       ESTABLISHED:ESTABLISHED

Well that didn't do it, even though it did say 192.168.1.65 was a
source, so it didn't list 192.168.1.65 as a destination.


# pfctl -k 64.12.28.36
killed 1 states from 1 sources and 0 destinations
# pfctl -sa | grep 5190
#

so now it's gone.

So where is the mistake? the man page or what I understand the -> and <-
characters to be?

I thank you for taking the time to read this message.


> Brian <bcook-openbsd_(_at_)_poklib_(_dot_)_org> rubbed two wires together, resulting in
> the following:
> 
> | Hello all,
> | 
> | I've been kicked from the OpenBSD channel on freenode because I've
> | made a type-o and I am not allowed to be told where my type-o is.
> <...>
> 
> "typo"
> 

-- 
Brian D. Cook
Network Administrator
Adriance Memorial Library
--
 Uptime:  9:15AM  up 47 days, 39 mins, 4 users, load averages: 0.00, 0.00, 0.00
A diplomat is someone who can tell you to go to hell
in such a way that you look forward to the trip.



Visit your host, monkey.org