In trying to eliminate variables I've got the simplest setup I can think of, a fresh install of FreeBSD with one connected interface using a static IP which is directly connected to the cable modem. If the server specs are considered relevant I can dig them up.
My pf.conf reads:
I expect blocked traffic to be logged, though all traffic should pass so nothing should be logged, but if I curl the server from another network pflog reports blocked tcp packets. I do get the http page but I dont understand the blocked packets.
I read a post on a similar problem, Thread pf-rules-logic.63381, and added a normalization step:
but the frequency of blocked packets only seems to increase.
I wouldnt generally nitpick about logs, but this behavior could be the root of a problem on another, more complicated setup.
Any thoughts or recommendations?
My pf.conf reads:
Code:
block log all
pass all
I read a post on a similar problem, Thread pf-rules-logic.63381, and added a normalization step:
Code:
scrub in on em0 all fragment reassemble
I wouldnt generally nitpick about logs, but this behavior could be the root of a problem on another, more complicated setup.
Any thoughts or recommendations?