Date: Tue, 11 Sep 2007 13:39:59 +1000 From: jonathan michaels <jon@caamora.com.au> To: freebsd pf <freebsd-pf@freebsd.org> Subject: pf, ping and traceroute Message-ID: <20070911133959.25090@caamora.com.au>
next in thread | raw e-mail | index | archive | help
greetings all, i am new to pf and freebsd (v6.2-R), while i have been using freebsd for about ten years .. i stoped at about v2.2.5 (or 7) it worked for me and on a 386dx33 with 8 mb dram it was perfect. now i am slowly coming to terms with freebsd v6.2, i did it in one step, from v2 to v6 it is a big cultural shift. my question is to do with pf and the using of things like ping and traceroute, using pf (any sort of a generic 'firewall' device/application/whatever) seems to preclude or severly limit my ability to do/use tools like ping/traceroute to test/check/verify whatever the usual admin functionality. i've read (and rearead, and rerea..) the documentation to me (with my learning difficulties) it is hard very hard to understand. i get that it is part of teh functionality to stop outside stuff garbage bad people from getting to teh inside but how do i make a "hole" in teh 'firewall' for ping/traceroute without opening up teh firewall to let the same (ping/traceroute/etc) stuff come in from teh outside ???? apologies for my poor writing. kind regards appreciations and thanks jonathan -- ================================================================ powered by .. QNX, OS9 and freeBSD -- http://caamora com au/operating system ==== === appropriate solution in an inappropriate world === ====
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070911133959.25090>