[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: problem with pf rather not common
> On Wed, Jun 26, 2002 at 06:43:32PM +0200, DonKoyote wrote:
> > For secure my wireless segment I did IPSec tunel from each Host/Client
> > OpenBSD gateway.
> > I want to block some traffic which comes from 192.168.2.0/24 if Client
> > not logged on to authpf, but pass some ports before that, and add some
> > after log on.
> > The problem is, that whole traffic is set by tunnel with ESP protocol,
> > will see those data like comming on the same port, and there is no
> > it's http, ssh etc. If I want to block some ports, in my opinion I
> > set rules on rl0 NIC eg. block out on rl0 ...
> > But it doesn't works ...
> of course not, there's only esp on rl0. you should be able to filter on
There is no such device like enc0 ....
I don't use any virtual interfaces too.