|
|
|
@ -1,4 +1,4 @@ |
|
|
|
# $OpenBSD: pf.conf,v 1.30 2006/01/26 12:44:59 henning Exp $ |
|
|
|
# $OpenBSD: pf.conf,v 1.31 2006/01/30 12:20:31 camield Exp $ |
|
|
|
# |
|
|
|
# See pf.conf(5) and /usr/share/pf for syntax and examples. |
|
|
|
# Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1 |
|
|
|
@ -14,6 +14,8 @@ |
|
|
|
|
|
|
|
#scrub in |
|
|
|
|
|
|
|
#nat-anchor "ftp-proxy/*" |
|
|
|
#rdr-anchor "ftp-proxy/*" |
|
|
|
#nat on $ext_if from !($ext_if) -> ($ext_if:0) |
|
|
|
#rdr pass on $int_if proto tcp to port ftp -> 127.0.0.1 port 8021 |
|
|
|
#rdr pass on $ext_if proto tcp from <spamd> to port smtp \ |
|
|
|
@ -21,6 +23,7 @@ |
|
|
|
#rdr pass on $ext_if proto tcp from !<spamd-white> to port smtp \ |
|
|
|
# -> 127.0.0.1 port spamd |
|
|
|
|
|
|
|
#anchor "ftp-proxy/*" |
|
|
|
#block in |
|
|
|
#pass out keep state |
|
|
|
|
|
|
|
@ -28,6 +31,5 @@ |
|
|
|
#antispoof quick for { lo $int_if } |
|
|
|
|
|
|
|
#pass in on $ext_if proto tcp to ($ext_if) port ssh keep state |
|
|
|
#pass in on $ext_if proto tcp to ($ext_if) port > 49151 user proxy keep state |
|
|
|
#pass in log on $ext_if proto tcp to ($ext_if) port smtp keep state |
|
|
|
#pass out log on $ext_if proto tcp from ($ext_if) to port smtp keep state |
camield
19 years ago