Displaying 2 results from an estimated 2 matches for "loginterface".
Did you mean:
cfginterface
2008 Mar 09
2
Dead Air on PF firewall
...are my rules...
ext_if = "bce0"
int_if = "bce1"
altitude = "172.16.1.0/24"
#### machines ####
vbox = "172.16.1.1"
uci = "172.16.1.4"
voices = "203.172.x.1"
ipc = "203.172.x.2"
#### default deny ####
set block-policy return
set loginterface $ext_if
set skip on lo
scrub in
#### nat ####
nat on $ext_if from !($ext_if) -> ($ext_if:0)
nat on $ext_if inet proto { udp tcp } from $vbox to any port 5060 ->
$ext_if port 5060
nat on $ext_if inet proto tcp from $uci to any port 1500 -> $ext_if port
1500
rdr on $ext_if proto { udp tcp...
2004 Nov 30
1
FreeBSD bridge + filtering, BIG problem
...!!!!! It's not pf related, because, same behaviour occurs with
IPF!!!!!!!!
Details
fw01: running FreeBSD 5.3, GENERIC kernel, with modules = acpi, ipl, bridge,
nullfs and pf.
Sr01: FreeBSD 5.2.1, custom kernel
Sr02: FreeBSD 5.3, GENERIC kernel
------------------------------------pf.conf
set loginterface fxp1
jail=**IP**
sr01=**IP**
sr02=**IP**
#block in quick proto tcp from any to $sr01 port smtp
pass quick from any to $jail keep state label 0
pass quick from $jail to any keep state label 1
pass quick from any to $sr02 keep state label 6
pass quick from $sr02 to any keep state label 7
pass quic...