| version 1.8, 2002/11/24 19:56:45 |
version 1.9, 2002/12/13 10:20:25 |
|
|
| # |
# |
| # See pf.conf(5) for syntax and examples |
# See pf.conf(5) for syntax and examples |
| # General order: options, scrub rules, NAT/rdr, and filter rules. |
# General order: options, scrub rules, NAT/rdr, and filter rules. |
| # Note that NAT is first match while packet filters are last match, |
# Note that NAT is first match while packet filters are last match, |
| # |
# |
| ext_if="ext0" # replace with actual external interface name i.e., dc0 |
ext_if="ext0" # replace with actual external interface name i.e., dc0 |
| internal_net="10.1.1.1/8" |
internal_net="10.1.1.1/8" |
|
|
| # pass in all |
# pass in all |
| # pass out all |
# pass out all |
| |
|
| # block all incoming packets but allow ssh, pass all outgoing tcp and udp |
# block all incoming packets but allow ssh, pass all outgoing tcp and udp |
| # connections and keep state |
# connections and keep state |
| # log blocked packets |
# log blocked packets |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to pf.conf CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / etc