Quote:
Originally Posted by jggimi
I can't tell from what you've posted what your DMZ is. Your rules only have an internal and external interface. You permit ssh, https, and rdp inbound on the external interface in your main ruleset, and it must be destined for the OpenBSD machine. That is the only TCP traffic permitted.
|
It could be my words are wrong:
So I use this bsd machine as the gateway from my exposed LAN to the DMZ.
I want to be able to ssh authpf to the bsd box. Then once authenticated I can ssh into any box in the DMZ. I feel my rules do not reflect this.