I'm migrating one of my systems to PF from IPFW. In so doing and planning, I've reviewed the manpages and some online docs. I've become dependent upon "ipfw -t" to determine hits on various spam rules I've implemented - some of them large lists of /24's. I've not been able to determine that there is an equivalent in PF - though I imagine there must be some method to accomplish this. I'd appreciate if someone could help point in the right direction. Thanks.....
Forrest Aldrich wrote:> I've not been able to determine that there is an equivalent in PF - > though I imagine there must be some method to accomplish this. > > I'd appreciate if someone could help point in the right direction.You want to label rules; a 'pfctl -sl' will then get you information on each label. See Schwartz' article in Sys Admin magazine from March '04.