Date: Mon, 12 Oct 2015 23:51:47 -0400 From: David Mehler <dave.mehler@gmail.com> To: freebsd-pf@freebsd.org Subject: Rules sanity check Message-ID: <CAPORhP7GxqYGmzk1ZT7sAzMMze3CEwkWUCC2zDWRLNJZC=RH9Q@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
--001a11c23d16751d490521f45dae Content-Type: text/plain; charset=UTF-8 Hello, I'm back to pf after a number of years with mainly Linux servers. I'm running FreeBSD 10 on a machine with pf. I'm hoping someone can give my rules such as they are a sanity check? Some things I know definitely aren't working is the ipv6 allowing of ssh and http, ipv6 ping doesn't work gives a udp error, ftp from the machine the data connection doesn't come through, i'm assuming i'll have that same problem when I set up a jailed ftp server as well. Sanity check appreciated. Thanks. Dave. --001a11c23d16751d490521f45dae Content-Type: application/octet-stream; name="pf.conf" Content-Disposition: attachment; filename="pf.conf" Content-Transfer-Encoding: base64 X-Attachment-Id: file0 IwojIHBmLmNvbmYgcnVsZXMKIyBFc3RhYmxpc2ggYSBibG9jayBieSBkZWZhdWx0IGZpcmV3YWxs LCBhbGxvdyBhbGwgb3V0Ym91bmQgdHJhZmZpYywgYiB1dCBvbmx5IGFsbG93IHBvcnRzIG9uIHRo ZSBsaXN0IGluYm91bmQKIwoKIyBkZWZpbmUgdGhlIGV4dGVybmFsIGludGVyZmFjZQpleHRfaWY9 InZ0bmV0MCIKCiMgU2V0IG9wdGlvbnMKIyBibG9jay1wb2xpY3kgY2FuIGJlIGVpdGhlciBkcm9w IG9yIHJldHVybgpzZXQgYmxvY2stcG9saWN5IGRyb3AKCiMgQXZvaWQgZG9pbmcgYW55dGhpbmcg d2l0aCB0aGUgbG8wIGxvb3BiYWNrIGludGVyZmFjZQpzZXQgc2tpcCBvbiBsbzAKc2NydWIgb24g JGV4dF9pZiBhbGwgcmVhc3NlbWJsZSB0Y3Agbm8tZGYgcmFuZG9tLWlkIG1heC1tc3MgMTQ0MAph bnRpc3Bvb2YgcXVpY2sgZm9yICgkZXh0X2lmKQoKIyBTZXQgdXAgdGFibGVzIGZvciBJUCBibG9j a2luZwp0YWJsZSA8Y2hpbGRyZW5zPiBwZXJzaXN0CnRhYmxlIDxjaHV1Z29rdT4gcGVyc2lzdCBm aWxlICIvZXRjL3BmL3pvbmVzL2NuLnpvbmUiCnRhYmxlIDxydT4gcGVyc2lzdCBmaWxlICIvZXRj L3BmL3pvbmVzL3J1LnpvbmUiCmljbXBfdHlwZXMgPSAiZWNob3JlcSIKaWNtcDZfdHlwZXMgPSAi aXB2Ni1pY21wIgoKIyBEZWZpbmUgc2VydmljZXMgd2Ugd2FudCB0byBhbGxvdyAgb3V0CnRjcF9z ZXJ2aWNlcyA9ICJ7IGZ0cC1kYXRhLCBmdHAsIG50cCwgYm9vdHBjLCBkb21haW4sIHNzaCwgc210 cCwgd3d3LCBodHRwcywgaW1hcCwgaW1hcHMgfSIKdWRwX3NlcnZpY2VzID0gInsgYm9vdHBjLCBk b21haW4sIG50cCB9IgoKIyBibG9jayBieSBkZWZhdWx0CmJsb2NrIGFsbAoKIyBCbG9jayBhbnl0 aGluZyBpbiB0aGUgY2hpbGRyZW5zIHRhYmxlCmJsb2NrIGluIHF1aWNrIHByb3RvIHRjcCBmcm9t IDxjaGlsZHJlbnM+IHRvIGFueQpibG9jayBpbiBxdWljayBwcm90byB0Y3AgZnJvbSA8Y2h1dWdv a3U+IHRvIGFueSBwb3J0IHsgODAgMjIgMjUgfQpibG9jayBpbiBxdWljayBwcm90byB0Y3AgZnJv bSA8cnU+IHRvIGFueSBwb3J0IHsgODAgMjIgMjUgfQoKIyBwYXNzIG91dCBhbnkgdHJhZmZpYyBm cm9tIHRoZSBob3N0CnBhc3Mgb3V0IHByb3RvIHRjcCB0byBhbnkgcG9ydCAkdGNwX3NlcnZpY2Vz IGtlZXAgc3RhdGUKcGFzcyBwcm90byB1ZHAgdG8gYW55IHBvcnQgJHVkcF9zZXJ2aWNlcyBrZWVw IHN0YXRlCgogIyBBbGxvdyBzc2ggY29ubmVjdGlvbnMgaW4gZnJvbSB0aGUgaW50ZXJuZXQKcGFz cyBpbiBpbmV0IHByb3RvIHRjcCB0byAkZXh0X2lmIHBvcnQgc3NoIGZsYWdzIFMvU0Ega2VlcCBz dGF0ZSAobWF4LXNyYy1jb25uIDUsIG1heC1zcmMtY29ubi1yYXRlIDUvNSwgb3ZlcmxvYWQgPGNo aWxkcmVucz4gZmx1c2ggZ2xvYmFsKQoKIyBQYXNzIGluIGh0dHAgdHJhZmZpYyBmcm9tIHRoZSBp bnRlcm5ldApwYXNzIGluIGluZXQgcHJvdG8gdGNwIHRvICRleHRfaWYgcG9ydCA4MCBmbGFncyBT L1NBIGtlZXAgc3RhdGUgKG1heC1zcmMtY29ubiA1LCBtYXgtc3JjLWNvbm4tcmF0ZSA1LzUsIG92 ZXJsb2FkIDxjaGlsZHJlbnM+IGZsdXNoIGdsb2JhbCkKCiMgQWxsb3cgc2VsZWN0ZWQgaWNtcCB0 eXBlcwojcGFzcyBpbiBpbmV0IHByb3RvIGljbXAgYWxsIGljbXAtdHlwZSAkaWNtcF90eXBlcyBr ZWVwIHN0YXRlCiMgQWxsb3cgcGluZ3Mgb3V0CnBhc3Mgb3V0IGluZXQgcHJvdG8gaWNtcCBhbGwg aWNtcC10eXBlICRpY21wX3R5cGVzIGtlZXAgc3RhdGUKIyBhbmQgZm9yIGlwdjYKI3Bhc3Mgb3V0 IGluZXQ2IHByb3RvIGljbXB2Ni1pY21wIGFsbCBpY21wLXR5cGUgJGljbXA2X3R5cGVzIGtlZXAg c3RhdGUKCg== --001a11c23d16751d490521f45dae--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPORhP7GxqYGmzk1ZT7sAzMMze3CEwkWUCC2zDWRLNJZC=RH9Q>