>>ЛЮДИИИИИ............. ПОМОГИТЕ...............
>
>
>И на кой здесь твой -ss?
>Как минимум покажи pfctl -srules.
># pfctl -s rules
No ALTQ support in kernel
ALTQ related functions disabled
scrub in all fragment reassemble
block return in all
pass out all keep state
anchor "ftp-proxy/*" all
block drop in quick on ! lo inet6 from ::1 to any
block drop in quick on ! lo inet from 127.0.0.0/8 to any
block drop in quick inet6 from ::1 to any
block drop in quick on lo0 inet6 from fe80::1 to any
block drop in quick inet from 127.0.0.1 to any
block drop in quick on ! xl0 inet from 192.168.1.0/24 to any
block drop in quick on xl0 inet6 from fe80::20a:5eff:fe64:b6c6 to any
block drop in quick inet from 192.168.1.3 to any
pass in log on vr0 inet proto tcp from any to (vr0) port = ssh flags S/SA keep state
pass in log on vr0 inet proto tcp from any to (vr0) port = smtp flags S/SA keep state
pass in log on vr0 inet proto tcp from any to (vr0) port = pop3 flags S/SA keep state
pass inet proto tcp from any to any port = domain keep state
pass inet proto tcp from any to any port = ntp keep state
pass inet proto udp from any to any port = domain keep state
pass inet proto udp from any to any port = ntp keep state
pass in inet proto icmp all icmp-type echoreq keep state
pass out on vr0 inet proto udp from any to any port 33433 >< 33626 keep state
pass in on vr0 inet proto tcp from any to xl0 port = ssh flags S/SA synproxy state
pass in on vr0 inet proto tcp from any to xl0 port = pop3 flags S/SA synproxy state
pass on xl0 from any to any flags S/SA keep state
>и КАК ЖЕ ты ПРОВЕРЯЛ ???? ВЕДЬ ПОРТЫ 22, 110 ПРЕКРАСНО ИЗ
>ВНЕ ВИДНЫ.
ВИДНЫ, т.к. пришлось через редирект завернуть.....надо ж как то выкручиваться.......
>хоть бы кусок вывода tcpdump привёл. а то БЛЯ СЦУКО пишешь "непонятно
>куда" и из слова "непонятно"(прям как тупая бабка) ЛЮДИ должны телепатически
>знать о том куда же твой хлам делся.
вот кусок tcpdump:
21:11:24.803378 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:26.858546 IP webmail.hitv.ru.56582 > globus.domo.ru.smtp: S 2110669641:211
0669641(0) win 65535 <mss 1300,nop,nop,sackOK,nop,wscale 1,nop,nop,timestamp 174
477122 0>
21:11:27.859346 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:28.065993 IP c-71-230-160-120.hsd1.pa.comcast.net.3956 > globus.domo.ru.sm
tp: S 1363163278:1363163278(0) win 65535 <mss 1460,nop,nop,sackOK>
21:11:28.652164 IP globus.domo.ru.50373 > ns.intelset.ru.domain: 6499+ [1au] PT
R? 120.160.230.71.in-addr.arpa. (56)
21:11:28.652328 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:28.813621 IP ns.intelset.ru.domain > globus.domo.ru.50373: 6499 1/0/1 (10
6)
21:11:29.652328 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:30.058995 IP webmail.hitv.ru.56582 > globus.domo.ru.smtp: S 2110669641:211
0669641(0) win 65535 <mss 1300,nop,nop,sackOK>
21:11:31.020493 IP c-71-230-160-120.hsd1.pa.comcast.net.3956 > globus.domo.ru.sm
tp: S 1363163278:1363163278(0) win 65535 <mss 1460,nop,nop,sackOK>
21:11:31.059302 IP globus.domo.ru > 0.0.0.0: pfsync 452
21:11:31.914005 IP nat131.ktknet.cz.4913 > globus.domo.ru.smtp: S 3043416488:304
3416488(0) win 16384 <mss 1460,nop,nop,sackOK>
21:11:32.813964 IP globus.domo.ru.50373 > ns.intelset.ru.domain: 6382+ [1au] PT
R? 131.213.196.217.in-addr.arpa. (57)
21:11:32.814279 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:33.260186 IP webmail.hitv.ru.56582 > globus.domo.ru.smtp: S 2110669641:211
0669641(0) win 65535 <mss 1300,nop,nop,sackOK>
21:11:33.432143 IP pobox.sfu.ca.58713 > globus.domo.ru.smtp: S 2636558260:263655
8260(0) win 49640 <mss 1460,nop,wscale 0,nop,nop,sackOK>
21:11:33.432287 IP globus.domo.ru > 0.0.0.0: pfsync 452
21:11:33.803279 IP globus.domo.ru > 0.0.0.0: pfsync 228
21:11:34.567158 IP 74-140-46-242.dhcp.insightbb.com.3734 > globus.domo.ru.smtp:
S 3105870620:3105870620(0) win 64240 <mss 1460,nop,nop,sackOK>
Вариант для распечатки
OpenNET: Виртуальная конференция (Public)
(??) on 14-Янв-07, 01:43 
