[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Help! pf.conf

To: misc@openbsd.org
Subject: Help! pf.conf
From: "Jenkins, Curtis" <cjenkins@epri.com>
Date: Tue, 12 Mar 2002 11:02:00 -0800

Hi,

I'm new to OpenBSD, been working with it for two months trying to figure it
out. Got as far as every thing working exsept for pf.conf rules. It passes
data but will not resolve dns. I have my ISP dns server as the dns server to
use. I have gone through all the man, faq pages and even sherch Google for
info, that is how I got this far. I need to know if any can see anything
wrong with my pf.conf file. I did it the long way for now, will compack it
later wance I know more about it.

Thanks

Ext = "de0"	#External Interface
Int = "de1"	#Internal Interface

#Normalization of packets
scrub in all

#Don't let anyone spoof non-routable addresses
block in quick on $Ext inet from 127.0.0.0/8 to any
block in quick on $Ext inet from 192.168.0.0/16 to any
block in quick on $Ext inet from 172.16.0.0/12 to any
block in quick on $Ext inet from 10.0.0.0/8 to any
block out quick on $Ext inet from any to 127.0.0.0/8
block out quick on $Ext inet from any to 192.168.0.0/16
block out quick on $Ext inet from any to 172.16.0.0/12
block out quick on $Ext inet from any to 10.0.0.0/8

#Lock down with defalt deny
block in quick on $Ext inet from any to any

#Let internal network traffic out
pass out on $Ext inet from any to any keep state

Follow-Ups:
- Re: Help! pf.conf
  - From: "Ram" <fblarbastanix@yahoo.com>
- Re: Help! pf.conf
  - From: "KoAps" <koaps@g3k.cc>
- Re: Help! pf.conf
  - From: Rickard Borgmäster <doktorn@realworld.nu>
- Re: Help! pf.conf
  - From: Carsten Menke <bootsy52@gmx.net>

Prev by Date: Re: trouble with CVS
Next by Date: Re: zlib bug
Prev by thread: Re: trouble with CVS
Next by thread: Re: Help! pf.conf
Index(es):
- Date
- Thread