This shows you the differences between two versions of the page.
— |
freebsd:pf_state_parsing [2014/02/18 14:50] (current) tschulz created |
||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== Packet Filter States ====== | ||
+ | ===== Simplify cmd ===== | ||
+ | <file> | ||
+ | pfctl -s state -v | tr -s " " | grep -v \\[ | ||
+ | </file> | ||
+ | |||
+ | ===== Case 1 ===== | ||
+ | <file> | ||
+ | all udp 10.1.3.34:4979 -> 216.189.128.10:62669 -> 255.255.255.255:2008 SINGLE:NO_TRAFFIC | ||
+ | age 00:00:00, expires in 00:01:00, 1:0 pkts, 44:0 bytes | ||
+ | </file> | ||
+ | * -> forward flow | ||
+ | * 44:0 bytes 44 bytes sent, 0 bytes recv | ||
+ | * **src** 0.1.3.34:4979 | ||
+ | * **dest** 255.255.255.255:2008 | ||
+ | * **via** 216.189.128.10:62669 | ||
+ | |||
+ | ===== Case 2 ===== | ||
+ | <file> | ||
+ | all udp 255.255.255.255:2008 <- 10.1.3.34:4979 NO_TRAFFIC:SINGLE | ||
+ | age 00:00:00, expires in 00:01:00, 1:0 pkts, 44:0 bytes, rule 7 | ||
+ | </file> | ||
+ | * <- backward flow | ||
+ | * 44:0 bytes 44 bytes sent, 0 bytes recv | ||
+ | * **src** 0.1.3.34:4979 | ||
+ | * **dest** 255.255.255.255:2008 | ||
+ | * **via** 216.189.128.10:62669 |