artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 06de222) | patch
pflog(4) logs packet dropped by default rule with block.
authorbluhm <bluhm@openbsd.org>
Thu, 12 Oct 2023 19:15:21 +0000 (19:15 +0000)
committerbluhm <bluhm@openbsd.org>
Thu, 12 Oct 2023 19:15:21 +0000 (19:15 +0000)
commit7b8683a1743e78bdd4f30591dd445c2455b3cf38
tree2342d11805cbf7abd9fb3dd93435bf38a67135a7tree | snapshot
parent06de222456dbe7c2730955134ce81f85ea1fbd07commit | diff
pflog(4) logs packet dropped by default rule with block.

If a packet is malformed, it is dropped by pf(4).  The rule referenced
in pflog(4) is the default rule.  As the default rule is a pass
rule, tcpdump printed "pass" although the packet was actually
dropped.  To avoid confusion, change the action to drop.  Then
tcpdump prints "block".

OK sashan@ kn@
sys/net/if_pflog.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim