[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Question about pfsync.

I was wondering if anyone noticed that any interface on OpenBSD with PF
is sending traffic pfsync?
For example
fxp0 and fxp1 are being setup as a bridge
fxp2 is the pfsync interface.
And you have a pf rule something like
block in log fxp1
You will see that in pflog0 (tcpdump -ni pflog0)
fxp1 is sending out
16:54:17.020170 UPD ST COMP:
 (DF) [tos 0x10]
tcpdump -n -e -ttt -r /var/log/pflog
Nov 24 16:54:34.020175 rule 3/0(match): block in on fxp1:
PFSYNCv2 count 1: UPD ST COMP:
 (DF) [tos 0x10]
So i guess my question is, How to disable fxp0 and fxp1 to participate
(sending) pfsync traffic?
Best Regards,