View Single Post
  #8   (View Single Post)  
Old 13th August 2012
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default

Quote:
Originally Posted by nekoneko View Post
Thanks for the replies.

Correct me if I'm wrong, but wouldn't this rule in your example file simply allow all traffic on the internal interface?

Code:
pass    quick on internal inet
.
Yes, in this rule set I opted for filtering only on the external interface.

Actually I intended change to filtering on the internal interface, label the allowed traffic with a tag, and only pass out the tagged traffic on the external interface. Just did not find the time to do it
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote