DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 9th September 2009
revzalot's Avatar
revzalot revzalot is offline
Shell Scout
 
Join Date: May 2008
Posts: 123
Thanked 1 Time in 1 Post
Default my pf won't allow my server to resolve

My pf works fine except my server cannot resolve. Yes I already checked my networking items and resolving works when pf is disabled. I know I'm missing a filtering rule.
Thanks in advance.

Code:
+tcp_services = "{ssh, sftp, imap, imaps, smtp, 587, pop3 \
+                    domain, ntp, www, http, https}"
+udp_services= "{domain, ntp}"
+
+
+set skip on lo
+set loginterface $ext_if
+
+scrub in all random-id fragment reassemble
+
+block return in log all
+block out all
+
+antispoof quick for $ext_if
+
+
+pass out quick on $ext_if proto tcp to any port $tcp_services
+pass out quick on $ext_if proto udp to any port $udp_services
+
+pass in on $ext_if proto tcp from any to any port ssh flags S/SA synproxy state      
+pass in on $ext_if proto tcp from any to any port smtp flags S/SA synproxy  state  
+pass in on $ext_if proto tcp from any to any port http flags S/SA synproxy state 
+pass in on $ext_if proto tcp from any to any port https flags S/SA synproxy state  
+pass in on $ext_if proto tcp from any to any port pop3 flags S/SA synproxy state 
+pass in on $ext_if proto udp from any to any port domain     
+pass in on $ext_if proto tcp from any to any port domain flags S/SA synproxy state
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
pkg_add - can't resolve <packagename> nihonto OpenBSD Packages and Ports 11 28th January 2009 10:03 PM
Sun Java System Web Server - Active Server Pages (yes ASP) hopla FreeBSD General 0 26th September 2008 08:22 AM


All times are GMT. The time now is 07:38 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick