|
|||
PF rule to disable icmp?
Hallo guys!
My first question on this forum so be nice to me Does somebody have an great pf rule for disable my firewall to respond to incomming imcp requests from internet. I have tried some, but it doesn´t work. /Cy |
|
|||
Of course it should be ICMP! sorry...
|
|
|||
Okey tnx... But were in the pf.conf would you put it? I know it should lie under the filter rules, but were in the order? I mean is there any problem by lie the rule in the end or is it supposed to be in the beginning of the filter rule section?
The file is read from top to bottom so the logic says that it should counter... /cy |
|
||||
When you ask "where should it go", I interpret that as you haven't even begun to read the documentation. When I first tried OpenBSD with the intent of setting it up as a gateway/firewall and no prior experience with it, it took me about 2-1/2 hours. My network was online with a basic pf ruleset in place which included some port redirection and dis/allowed services. This included going through the Basic Configuration section of the PF FAQ, as well as documentation for the other services I needed running. I only say that to give you an idea of how much time it took for one person read through it.
http://www.openbsd.org/faq/pf/ Go through the Basic Config section there. It doesn't take that long, and ALL of the information there is going to be helpful, including where you put rules, which is in the very first link: Getting Started.
__________________
Mike |
|
|||
To compliment mikesg's assertion that reading the documentation is paramount, the OP should also take the time to read Hansteen's "Firewalling with PF" manuscript:
http://home.nuug.no/~peter/pf/ ...which serves as the basis for his later work, The Book of PF. |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
pf: why is that rule not working? | ivanatora | FreeBSD General | 14 | 11th December 2008 09:32 AM |
Disable manual fsck on startup | Malakim | FreeBSD General | 4 | 2nd September 2008 05:28 PM |
Disable CTRL+ALT+DEL FreeBSD Gnome | mfaridi | FreeBSD Security | 7 | 27th August 2008 07:10 PM |
pf.conf brute force rule | ijk | FreeBSD Security | 6 | 11th August 2008 04:54 PM |
Remove/disable a former system user | anomie | Guides | 6 | 19th May 2008 12:37 AM |