Quote:
Originally Posted by ucharfli
@jggimi;
It was nice, but I do not know how to write a rule with PF from where. That's why I asked for help.
|
You have a choice:
- Blindly copy/paste a configuration someone prepares for you, and hope that it works, and hope that it does not cause problems.
- Learn how to provision your own network connections, so that you are able to manage and maintain them the way you wish.
I'm happy to help you with "b." Step by step. But I have no interest in providing a PF configuration file for you to copy/paste.
Quote:
|
I found something simple, but is it a benefit?
|
These two rules conflict with each other. The
set skip rule instructs PF to ignore traffic on the interface, the
pass rule instructs PF to pass traffic on the interface.
The two rules have a similar result, but they are not exactly equivalent.
The
set skip rule will only be applied at the time the rules are loaded, and if the tun0 interface does not exist at that time, the first rule will not be applied.