Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 19th April 2012
whispersGhost's Avatar
whispersGhost whispersGhost is offline
Real Name: heather
Package Pilot
Join Date: May 2008
Location: ny
Posts: 168
Default please check my pf for any errors Thank You

# Macros

server =
ext_if = "lo0"
int_if = "r10"

set skip on lo0
set block-policy drop

# Norm Traffic
match in all scrub (no-df max-mss 1440)

# Rerouting
pass in on $ext_if proto tcp from any to $ext_if port 7008 \
rdr-to $server port 7008

# Block Policy
block log all

# Security
antispoof for $ext_if
antispoof for $int_if

# Block Pings
block in on $ext_if inet proto icmp all

#pass 		# to establish keep-state

# By default, do not permit remote connections to X11
block in on ! lo0 proto tcp to port 6000:6010
The journey is better then the destination

Last edited by ocicat; 19th April 2012 at 12:53 PM. Reason: PLEASE use [code] & [/code] tags when posting file content.
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
6.3 > 7.2 kernel errors carpman FreeBSD Installation and Upgrading 3 16th March 2010 10:58 PM
pkgdb errors maxrussell FreeBSD Ports and Packages 1 22nd May 2009 11:06 AM
please check my pf.conf gosha OpenBSD Security 10 30th January 2009 12:32 AM
check for badblocks ccc FreeBSD General 5 30th October 2008 07:00 PM
apache log errors ijk FreeBSD Ports and Packages 4 13th July 2008 03:56 PM

All times are GMT. The time now is 12:23 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick