Re: pf problemer under bridging

• Next message: Morten Liebach: "Re: pf problemer under bridging"
• Previous message: Torben Wölm: "RE: SV: SV: pf problemer under bridging"
• In reply to: Allan Jensen: "pf problemer under bridging"
• Next in thread: Morten Liebach: "Re: pf problemer under bridging"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

From: "Jesper Louis Andersen" <none@jlouis--mongers.org.lh.bsd-dk.dk>
Date: Wed, 28 Apr 2004 23:30:28 +0200
To: bsd-dk@bsd-dk.dk
Subject: Re: pf problemer under bridging

Quoting Allan Jensen (unik1971@hotmail.com):

Det ser noget iptables/ipchains/ipfw/ipf-agtigt ud. PF har
makroer, saa det kan med fordel udnyttes. Noget i retning af:

ext_if = "xl0"
int_if = "em0"

ext_ports_tcp = { 22, 25, 110, 443, 3128 }
ext_ports_udp = 53

pass in on $int_if all
pass out on $int_if all

pass in quick on $ext_if inet proto tcp from any \
        to any port $ext_ports_tcp
pass in quick on $ext_if inet proto udp from any \
        to any port $ext_ports_udp
pass in quick on $ext_if inet proto icmp all

Nej, det loeser ikke dit problem, men det goer det IMO nemmere
at rode med paa sigt, fordi du kan noejes med at pille i
makroerne i toppen i stedet for at pille i hele regelsaettet.

Og ja, noget tilsvarende kan opnaas i ipfw/etc ved brug af
m4, cpp, python eller andet godt.

-- 
j. 

• Next message: Morten Liebach: "Re: pf problemer under bridging"
• Previous message: Torben Wölm: "RE: SV: SV: pf problemer under bridging"
• In reply to: Allan Jensen: "pf problemer under bridging"
• Next in thread: Morten Liebach: "Re: pf problemer under bridging"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:39 CET