Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 22 Jan 2010 02:12:00 -0500
From:      kalin m <kalin@el.net>
To:        freebsd-questions@freebsd.org
Subject:   pf rules
Message-ID:  <4B594FC0.3010200@el.net>

Next in thread | Raw E-Mail | Index | Archive | Help

hi all...

doing testing with pf...

how is it possible that if i have these rules below in pf.conf if i do:
telnet that.host.org 25

i get:
Trying xx.xx.xx.xx...
Connected to that.host.org.
Escape character is '^]'.
........... etc .......


pf.conf contetns:

tcp_in = "{ www, https }"
ftp_in = "{ ftp }"
udp = "{ domain, ntp }"
ping = "echoreq"

set skip on lo
scrub in

antispoof for eth0 inet

block in all
pass out all keep state
pass proto udp to any port $udp
pass inet proto icmp all icmp-type $ping keep state
pass in inet proto tcp to any port $tcp_in flags S/SAF synproxy state
pass proto tcp to any port ssh




thanks...




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?4B594FC0.3010200>