Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Source code pulled from OpenBSD for OpenNTPD. The place to contribute to this code is via the OpenBSD CVS tree.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4053 Commits
49 Branches
369 MiB
Tree: a73d63a9ef
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a73d63a9ef'
${ noResults }
openntpd-openbsd/src/etc/pf.conf

31 lines
1.0 KiB
Raw Normal View History

reminder to set net.inet.ip.forwarding/net.inet6.ip6.forwarding in sysctl.conf ok cedric@ mcbride@
21 years ago
pf rule sets; ok deraadt@
23 years ago
-list options with default values -correct order -various spelling/grammar/consistency from David Krause with feedback from dhartmei@
22 years ago
reminder to set net.inet.ip.forwarding/net.inet6.ip6.forwarding in sysctl.conf ok cedric@ mcbride@
21 years ago
remove extra # ok henning@
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
much-needed update to include examples for all seven types of statements queueing and table examples are from the fosdem2k3 presentation spamd rdr simplification from henning@ ok dhartmei@ henning@
22 years ago
spamd now uses tables (these load MUCH faster on my ss2); ok deraadt
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
-list options with default values -correct order -various spelling/grammar/consistency from David Krause with feedback from dhartmei@
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
merge nat.conf here as well add more simple filter rule examples "commit it" deraadt@
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
much-needed update to include examples for all seven types of statements queueing and table examples are from the fosdem2k3 presentation spamd rdr simplification from henning@ ok dhartmei@ henning@
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
much-needed update to include examples for all seven types of statements queueing and table examples are from the fosdem2k3 presentation spamd rdr simplification from henning@ ok dhartmei@ henning@
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
Add comments, mostly borrowed from ftp-proxy(8), showing how to set up up. Improved & OK'd by dhartmei@, david@, millert@.
22 years ago
Simplify pf.conf, provide sample rules for greylisting. ok beck@, input from many.
21 years ago
 
  1. #	$OpenBSD: pf.conf,v 1.28 2004/04/29 21:03:09 frantzen Exp $
  2. #
  3. # See pf.conf(5) and /usr/share/pf for syntax and examples.
  4. # Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1
  5. # in /etc/sysctl.conf if packets are to be forwarded between interfaces.
  6. 

  7. #ext_if="ext0"
  8. #int_if="int0"
  9. 

  10. #table <spamd> persist
  11. #table <spamd-white> persist
  12. 

  13. #scrub in
  14. 

  15. #nat on $ext_if from !($ext_if) -> ($ext_if:0)
  16. #rdr pass on $int_if proto tcp to port ftp -> 127.0.0.1 port 8021
  17. #rdr pass on $ext_if proto tcp from <spamd> to port smtp \
  18. #	-> 127.0.0.1 port spamd
  19. #rdr pass on $ext_if proto tcp from !<spamd-white> to port smtp \
  20. #	-> 127.0.0.1 port spamd
  21. 

  22. #block in
  23. #pass out keep state
  24. 

  25. #pass quick on { lo $int_if }
  26. #antispoof quick for { lo $int_if }
  27. 

  28. #pass in on $ext_if proto tcp to ($ext_if) port ssh keep state
  29. #pass in on $ext_if proto tcp to ($ext_if) port > 49151 user proxy keep state
  30. #pass in log on $ext_if proto tcp to ($ext_if) port smtp keep state
  31. #pass out log on $ext_if proto tcp from ($ext_if) to port smtp keep state