Date: Fri, 4 Jan 2008 09:33:30 +0100 (CET) Subject: Problemer med PF på FreeBSD som gateway From: "Morten Kristensen" <none@bsd-dk--cypraz.dk.lh.bsd-dk.dk> To: bsd-dk@bsd-dk.dk
Hej.
Jeg har et underligt problem, når jeg enabler PF med følgende script
ext_if = "em1"
int_if = "em2"
loopback = "lo0"
tcp_services = "{ 80, 22 }"
icmp_types = "echoreq"
set block-policy return
set skip on $loopback
set loginterface $ext_if
nat pass on $ext_if from !($ext_if) to any -> ($ext_if) static-port
block all
antispoof for $ext_if
antispoof for $int_if
pass in on $ext_if inet proto tcp from any to $ext_if port $tcp_services
keep state flags S/SA
pass in log on $int_if from $int_if:network to any keep state
pass out on $int_if from any to $int_if:network keep state
pass out on $ext_if proto tcp all modulate state flags S/SA
pass out on $ext_if proto { udp, icmp } all keep state
Får jeg ikke mere end hvad der svare til en 6 mbit igennen, men disabler
jeg pf, så kan jeg fint få de 8 mbit jeg skal have.
Nogen der har oplevet dette problem før?
/Morten
This archive was generated by hypermail 2b30 : Thu 31 Jan 2008 - 23:00:02 CET