RE: pf og pass

From: Claus Guttesen (none@cguttesen--yahoo.dk.lh.bsd-dk.dk)
Date: Thu 04 Nov 2004 - 09:22:39 CET

Next message: Jesper Louis Andersen: "Re: pf og pass"
Previous message: Tue Topholm: "RE: pf og pass"
In reply to: Tue Topholm: "RE: pf og pass"
Next in thread: Jesper Louis Andersen: "Re: pf og pass"
Reply: Jesper Louis Andersen: "Re: pf og pass"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Thu, 4 Nov 2004 09:22:39 +0100 (CET)
From: Claus Guttesen <none@cguttesen--yahoo.dk.lh.bsd-dk.dk>
Subject: RE: pf og pass
To: bsd-dk@bsd-dk.dk

> Den skal bruges som firewall foran en webserver.
> Det som udgangspunkt, jeg gerne vil have den til er
> at lukke for al trafik
> både ind og ud.

# Filtering: the implicit first two rules are
block in all
block out all

pass in quick on lo0 from any to any
pass out quick on lo0 from any to any

> Hvorefter jeg kan åbne op for de porte jeg nu
> ønsker. F.eks. Port 80, som webserveren kører på.

# incoming packets
pass in quick on $ext_if proto tcp from any to $ext_if
port www flags S/SA keep state # web

Claus

Next message: Jesper Louis Andersen: "Re: pf og pass"
Previous message: Tue Topholm: "RE: pf og pass"
In reply to: Tue Topholm: "RE: pf og pass"
Next in thread: Jesper Louis Andersen: "Re: pf og pass"
Reply: Jesper Louis Andersen: "Re: pf og pass"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:46 CET