Date: Sat, 17 Oct 2009 02:53:31 -0700 (PDT) From: =?iso-8859-1?Q?D=E1nielisz_L=E1szl=F3?= <laszlo_danielisz@yahoo.com> To: freebsd-questions@freebsd.org Subject: pf, ssh related question Message-ID: <880435.50203.qm@web30808.mail.mud.yahoo.com>
index | next in thread | raw e-mail
Hello,
I have the following annoying thing: all the time I runpfctl -F all -f /etc/pf.conf I got disconnected from my remote machine.
Do you have any idea how can I avoid this?
Here is my pf.conf
#MACROS
ext_if="rl0"
int_if="rl1"
good_ip="{192.168.1.0/24}"
icmp_types="echoreq"
set skip on lo
scrub in
block in
pass out keep state
antispoof quick for { lo $int_if }
#incoming ssh
pass in log quick on $int_if inet proto tcp from $good_ip to ($int_if) port 22 flags S/SA keep state
#incoming http
pass in log quick on $int_if inet proto tcp from $good_ip to ($int_if) port 80 flags S/SA keep state
pass in inet proto icmp all icmp-type $icmp_types keep state
home |
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?880435.50203.qm>