View Single Post
  #3   (View Single Post)  
Old 31st October 2016
Amithapr Amithapr is offline
Fdisk Soldier
 
Join Date: Dec 2015
Posts: 69
Default

Hi Jggimi,

Thanks for the information. I put the following rules
Code:
block out on $int_if proto tcp from $lan to any port = http
block out on $int_if proto tcp from $lan to any port = https
pass out on $int_if proto tcp from $proxy to any port = http keep state
pass out on $int_if proto tcp from $proxy to any port = https keep state
Now the pfctl -nf /etc/pf.conf doesn't trigger any error. But still my LAN side I can access http and https traffic without the proxy.

Do I have to apply these rules before " pass out keep state " section?

Thanks

Last edited by ocicat; 31st October 2016 at 12:01 PM. Reason: Please wrap code with [code] & [/code] tags.
Reply With Quote