Thread: AuthPF Configuration
View Single Post
  #15   (View Single Post)  
Old 9th July 2014
EverydayDiesel EverydayDiesel is offline
Shell Scout
  
Join Date: Jan 2009
Posts: 124
Default
Ok the ruleset you posted works but it fails once i start blocking ports.

Code:
# allow this user to pass all traffic
pass from $user_ip to any
pass from any to $user_ip

This code works
Code:
TCP_PORT = "{ 80 ssh }"
UDP_PORT = "{ 53 }"

pass in on athn0 proto tcp from any to $user_ip port $TCP_PORT
pass out on athn0 proto udp from any to $user_ip port $UDP_PORT

pass from $user_ip to any
This code does NOT work
Code:
TCP_PORT = "{ 80 ssh }"
UDP_PORT = "{ 53 }"

pass in on athn0 proto tcp from any to $user_ip port $TCP_PORT
pass out on athn0 proto udp from any to $user_ip port $UDP_PORT

pass in on athn0 proto tcp from $user_ip to any port $TCP_PORT
pass out on athn0 proto udp from $user_ip to any port $UDP_PORT

tcpdump shows nothing :-/
Code:
tcpdump -neti pflog0

Can you please show me the proper config for pf.conf and /etc/authpf/authpf.rules
Reply With Quote