|
OpenBSD Security Functionally paranoid! |
|
Thread Tools | Display Modes |
|
|||
Those rules don't make an OBSD firewall stealth. Making sure that the block policy is drop does
An alternative could be to use a bridge, where the 2 interfaces have no IP addresses but where you still can filter traffic. BTW keep state already has been the default for several releases, and thus does not need to be specified anymore
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
Tags |
hide, pf, stealth |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Opera Port - conflicting pkgs in "make install" | IronForge | OpenBSD Packages and Ports | 5 | 29th October 2009 05:10 AM |
Fixed "xinit" after _7 _8, "how" here in case anyones' "X" breaks... using "nvidia" | jb_daefo | Guides | 0 | 5th October 2009 09:31 PM |
Thoughts on "make deinstall clean" | Mantazz | FreeBSD Ports and Packages | 8 | 14th September 2009 06:45 PM |
"Thanks" and "Edit Tags". | diw | Feedback and Suggestions | 2 | 29th March 2009 12:06 AM |
New Kernel: "make depend" doesn't work | nihonto | NetBSD General | 9 | 23rd January 2009 09:02 PM |