Ok the ruleset you posted works but it fails once i start blocking ports.
Code:
# allow this user to pass all traffic
pass from $user_ip to any
pass from any to $user_ip
This code works
Code:
TCP_PORT = "{ 80 ssh }"
UDP_PORT = "{ 53 }"
pass in on athn0 proto tcp from any to $user_ip port $TCP_PORT
pass out on athn0 proto udp from any to $user_ip port $UDP_PORT
pass from $user_ip to any
This code does NOT work
Code:
TCP_PORT = "{ 80 ssh }"
UDP_PORT = "{ 53 }"
pass in on athn0 proto tcp from any to $user_ip port $TCP_PORT
pass out on athn0 proto udp from any to $user_ip port $UDP_PORT
pass in on athn0 proto tcp from $user_ip to any port $TCP_PORT
pass out on athn0 proto udp from $user_ip to any port $UDP_PORT
tcpdump shows nothing :-/
Code:
tcpdump -neti pflog0
Can you please show me the proper config for pf.conf and /etc/authpf/authpf.rules