Reject rule displays as block in firewall logs



  • Hi,

    I have set all my rules to reject rather than block. However when I look at the firewall logs, the reject rule has the red x beside it instead of the yellow x as in the rule list.

    Is this just a cosmetic issue? or is something wrong?

    Pic 1 is the log
    Pic 2 is the rule

    TIA.





  • Rebel Alliance Developer Netgate

    Reject only works for certain protocols (tcp, udp). For protocols where reject does not work, it acts like a block rule.

    From pf.conf(5):

    return    A TCP RST is returned for blocked TCP packets, an ICMP
                        UNREACHABLE is returned for blocked UDP packets, and all
                        other packets are silently dropped.