From dde2f1ae476740f9faff7da49534272594318088 Mon Sep 17 00:00:00 2001 From: Yuri Slobodyanyuk Date: Sat, 20 Mar 2021 14:16:29 +0000 Subject: [PATCH] ongoing additions, changes, and fixes --- PF-firewall-configuration-and-debug-cheat-sheet.adoc | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/PF-firewall-configuration-and-debug-cheat-sheet.adoc b/PF-firewall-configuration-and-debug-cheat-sheet.adoc index f4a5d2e..9469bed 100644 --- a/PF-firewall-configuration-and-debug-cheat-sheet.adoc +++ b/PF-firewall-configuration-and-debug-cheat-sheet.adoc @@ -32,10 +32,14 @@ Author: Yuri Slobodyanyuk, admin@yurisk.info a| Flush, accordingly: -- Everything (filter rules, nat, and sateful table) +- Everything (filter rules, nat, but NOT sateful table - those already connected will stay so) - Rules only (stateful table of existing connections stay intact) - NAT rules only -- Stateful table +- Stateful table (but again - active connections stay alive) + + +|*pfctl -z* +|Clear all per rule statistics/counters |*pass in quick on egress from 62.13.77.141 to any*