From owner-freebsd-questions@FreeBSD.ORG Thu May 31 08:14:17 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 5361116A400 for ; Thu, 31 May 2007 08:14:17 +0000 (UTC) (envelope-from idefix@fechner.net) Received: from michelle.lostinspace.de (michelle.lostinspace.de [62.146.248.226]) by mx1.freebsd.org (Postfix) with ESMTP id DC6C813C468 for ; Thu, 31 May 2007 08:14:16 +0000 (UTC) (envelope-from idefix@fechner.net) Received: from server.idefix.lan (cl-70.muc-02.de.sixxs.net [IPv6:2001:a60:f000:45::2]) (authenticated bits=0) by michelle.lostinspace.de (8.13.8/8.13.8) with ESMTP id l4V7cBCu082402 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Thu, 31 May 2007 09:38:17 +0200 (CEST) (envelope-from idefix@fechner.net) Received: from idefix by server.idefix.lan with local (Exim 4.67 (FreeBSD)) (envelope-from ) id 1HtfC5-0001fd-6p for freebsd-questions@freebsd.org; Thu, 31 May 2007 09:35:37 +0200 Date: Thu, 31 May 2007 09:35:37 +0200 From: Matthias Fechner To: freebsd-questions@freebsd.org Message-ID: <20070531073537.GB5328@server.idefix.lan> Mail-Followup-To: freebsd-questions@freebsd.org References: <200705301919.26630.freebsd@dfwlp.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200705301919.26630.freebsd@dfwlp.com> X-Crypto: GnuPG/1.0.6 http://www.gnupg.org X-GnuPG: 0x1B756EF6 User-Agent: Mutt/1.5.15 (2007-04-06) Sender: Matthias Fechner X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-3.0 (michelle.lostinspace.de [IPv6:2a01:138:100:1812:200:d1ff:fe1b:b6c2]); Thu, 31 May 2007 09:38:17 +0200 (CEST) X-Virus-Scanned: ClamAV 0.90.2/3333/Wed May 30 16:42:37 2007 on michelle.lostinspace.de X-Virus-Status: Clean X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00, UNPARSEABLE_RELAY autolearn=ham version=3.1.8 X-Spam-Checker-Version: SpamAssassin 3.1.8 (2007-02-13) on michelle.lostinspace.de Subject: Re: im new with pf X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: bsd-questions@freebsd.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 31 May 2007 08:14:17 -0000 Hello Jonathan, * Jonathan Horne [30-05-07 19:19]: > like i said, i need to allow local (and me, trusted) to anything, and anyone > else just access to 25, 80 and 443. thanks for any critiques and ideas. you can try security/fwbuilder a nice tool to build firewalls and administrate them. It can compile the rules for several systems including pf. Best regards, Matthias -- "Programming today is a race between software engineers striving to build bigger and better idiot-proof programs, and the universe trying to produce bigger and better idiots. So far, the universe is winning." -- Rich Cook