From owner-freebsd-pf@FreeBSD.ORG Tue Jul 7 09:26:37 2009 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C070C106564A for ; Tue, 7 Jul 2009 09:26:37 +0000 (UTC) (envelope-from valentin.bud@gmail.com) Received: from mail-fx0-f218.google.com (mail-fx0-f218.google.com [209.85.220.218]) by mx1.freebsd.org (Postfix) with ESMTP id 4A5068FC0C for ; Tue, 7 Jul 2009 09:26:33 +0000 (UTC) (envelope-from valentin.bud@gmail.com) Received: by fxm18 with SMTP id 18so4026212fxm.43 for ; Tue, 07 Jul 2009 02:26:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :from:date:message-id:subject:to:cc:content-type; bh=LxmD7nuNBMuw4lmQmZi7o+V6fH/xnsxVhIT9oIgWbmA=; b=s0I+4wTWs0r49zV8WnNmc50umWHcEh25XNP1yFSCfLh3fn7FOC3aelWkYIqdlhTRZ8 o0K+DpbbONhcPHsCwfdxpPfeGruWVucZgw3GBLXyx0ad54Pu4qGqvIV5TyTaYT4xO+RX l4W0g/vLBCkqrMjZHXLSTizTnjZfXted7bktk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=uKLtvoI0G1BV+khQK+bl1QKedB5UEZLq1hkXO7aO2vLkX48rL6U86YJseeE5Yy3wip 9X0zBbyhY2JcYy9wNieBuYuju9UrpH+pXHQ3oiGeuBURXrZgPE4QUKp9xJqppjSDgs8J 1pE3x4OEKLUHWDG7nv9cpW0jyaZuiNFvGYRQQ= MIME-Version: 1.0 Received: by 10.223.112.130 with SMTP id w2mr2546171fap.65.1246956801157; Tue, 07 Jul 2009 01:53:21 -0700 (PDT) In-Reply-To: References: From: Valentin Bud Date: Tue, 7 Jul 2009 11:53:01 +0300 Message-ID: <139b44430907070153o12a1da1dx39fb67292743016c@mail.gmail.com> To: "John Dakos [ Enovation Technologies ]" Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-pf@freebsd.org Subject: Re: Simple Config PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Jul 2009 09:26:38 -0000 On Tue, Jul 7, 2009 at 11:30 AM, John Dakos [ Enovation Technologies ] < gdakos@enovation.gr> wrote: > > > Hello All, I m newbie on PF > > > > I want a simple pf.conf, I have one NIC > > > > I want filtered ports 21,22,25,80,110, 53 DNS and Samba, and all other > ports to be closed. > > > > Is any one to have this config? > > > > Thanks Hello Mr. John, The pf FAQ should be a good place to start. http://openbsd.org/faq/pf/index.html Blindly copying some rules written here by some person be them good will not make you understand how pf works and how to debug and use in the future. Another must have resource regarding PF is "The book of PF" by Peter N. M. Hansteen. And to quote him: "The Pledge of the Network Admin This is my network. It is mine, or technically, my employer's; it is my responsibility, and I care for it with all my heart. There are many other networks a lot like mine, but none are just like it. I solemnly swear that I will not mindlessly paste from HOWTOs." I don't want to be rude with you, I (as well as many others) could provide a simple ruleset but that would break "Your Pledge" as a Network Admin and plus the knowledge you'll gain by learning pf will be of use in the future. a great day, v -- network warrior since 2005