From owner-freebsd-net@FreeBSD.ORG Fri Nov 17 10:34:48 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 60ED016A40F for ; Fri, 17 Nov 2006 10:34:48 +0000 (UTC) (envelope-from greg@bestnet.kharkov.ua) Received: from relay.bestnet.ua (relay.bestnet.ua [193.124.57.92]) by mx1.FreeBSD.org (Postfix) with ESMTP id DB51143D5D for ; Fri, 17 Nov 2006 10:34:47 +0000 (GMT) (envelope-from greg@bestnet.kharkov.ua) Received: from relay.bestnet.ua (db.bestnet.ua [127.0.0.1]) by relay.bestnet.ua (Postfix) with ESMTP id 73BA6FB003A for ; Fri, 17 Nov 2006 12:34:46 +0200 (EET) Received: from [80.92.224.11] (greg.bestnet.kharkov.ua [80.92.224.11]) by relay.bestnet.ua (Postfix) with ESMTP id 53362FB0014 for ; Fri, 17 Nov 2006 12:34:45 +0200 (EET) Message-ID: <455D9074.3090300@bestnet.kharkov.ua> Date: Fri, 17 Nov 2006 12:35:32 +0200 From: Gregory Edigarov User-Agent: Thunderbird 1.5.0.7 (X11/20061114) MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP Subject: How to test a pf firewall with nat X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Nov 2006 10:34:48 -0000 Hello Everybody, I am trying to move one of my servers/routers from linux/iptables to freebsd/pf, and need a methodology of testing the pf firewall ruleset before it will go in production. I cannot experiment on live network, because it's a busy server. I only have one other machine available. What can I do and what tool can you recommend? Thank you. -- With best regards, Gregory Edigarov