Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # cat /etc/pf.conf
- # $OpenBSD: pf.conf,v 1.50 2011/04/28 00:19:42 mikeb Exp $
- #
- # See pf.conf(5) for syntax and examples.
- # Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1
- # in /etc/sysctl.conf if packets are to be forwarded between interfaces.
- set skip on lo
- pass # to establish keep-state
- block in on ! lo0 proto tcp to port 6000:6010
- set block-policy return
- set loginterface age0
- match out on egress inet from !(egress) to any nat-to (egress:0)
- pass out quick
- antispoof quick for { lo rl0 }
- pass in inet proto icmp all icmp-type echoreq
- pass on { age0, rl0 } proto igmp allow-opts
- pass quick to 224.0.0.0/4 allow-opts modulate state
- pass in quick on age0 all allow-opts
- pass on rl0
Advertisement
Add Comment
Please, Sign In to add comment
