Home » Mailing list archives » openbsd-misc » 2008 » September » 11

help with transparent filter

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Roberto Pereyra
Subject: help with transparent filter
Date: Thursday, September 11, 2008 - 7:10 am

I'm newbie with pf and I would like to use a transparent bridge in this way:



---- clients  -----/bridge/ ------internal net

in the internal net I would only to enable full access to only two
Windows servers (file and Oracle servers). All the another traffic
must be blocked.

My pf.conf not work, in that I am wrong?

Thanks in advance.

roberto


int_if = "xl0"
ext_if = "xl1"

serv_windows = "{ 192.168.0.100, 192.168.0.2 }"

# we only want to filter one interface, so pass everything on the
inside interface
pass in quick on $ext_if all
pass out quick on $ext_if all

# block everything by default on the external interface
block in log on $int_if all
block out log on $int_if all

## My servers

pass out quick log on $int_if proto {tcp, udp} from any to
$serv_windows
pass in quick log  on $int_if proto {tcp, udp} from any to
$serv_windows



-- 
Ing. Roberto Pereyra
ContenidosOnline
http://www.contenidosonline.com.ar

Get secure managed email for your own domain with Hushmail Business -
http://www.hushmail.com/business?l=503&a=3211
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
help with transparent filter, Roberto Pereyra, (Thu Sep 11, 7:10 am)