View Single Post
Old 10th July 2019
calanon calanon is offline
Port Guard
Join Date: Jul 2019
Posts: 38

Originally Posted by jggimi View Post
I can't tell from what you've posted what your DMZ is. Your rules only have an internal and external interface. You permit ssh, https, and rdp inbound on the external interface in your main ruleset, and it must be destined for the OpenBSD machine. That is the only TCP traffic permitted.
It could be my words are wrong:

So I use this bsd machine as the gateway from my exposed LAN to the DMZ.

I want to be able to ssh authpf to the bsd box. Then once authenticated I can ssh into any box in the DMZ. I feel my rules do not reflect this.
Reply With Quote