Check my PF
This is a discussion on Check my PF within the lucky.openbsd.misc forums, part of the OpenBSD category; --> Can you please take a look at my pf.conf ? is there anything wrong with it ? everything seem ...
| |||||||
| Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-18-2008, 06:07 AM
| ||||
| ||||
 Check my PF Can you please take a look at my pf.conf ? is there anything wrong with it ? everything seem to work fine, how about traffic shaping ? how can i chack it ? intif="epic0" intnet="10.0.0.0/16" extif="fxp0" extad="192.168.0.2/32" chadd="10.0.0.1/32" servers="10.0.0.2, 10.0.0.3, 10.0.0.4, 10.0.0.5, 10.0.0.6" mailserver="10.0.0.2" vip="10.0.0.5" ports = "22 25 53 80 110 119 123 143 443 554 1755 1863 3389 5000 5001 5050 5100 5190 6667 11999" allif="{$extif, intif}" table <allowedclients> persist file "/etc/allowedclients" table <blockedclients> persist file "/etc/blockedclients" scrub in all altq on $extif priq bandwidth 500Kb queue{msn, www, https, smtp, ftp, ssh} queue msn priority 14 queue ssh priority 15 queue https priority 13 queue www priority 10 queue smtp priority 8 queue ftp priority 7 priq(default) nat on $extif inet proto {tcp, udp } from <allowedclients> to any port { $ports } -> $extad rdr on $intif proto tcp from <allowedclients> to any port 80 -> $chadd port 8080 rdr on $extif proto tcp from any to $extad port 25 -> $mailserver port 25 rdr on $extif proto tcp from any to $extad port 80 -> $mailserver port 80 pass out on $extif inet proto { tcp, udp } from <allowedclients> to any port { $ports } pass in on extif proto tcp from <allowedclients> to any port msn queue msn pass in on extif proto tcp from <allowedclients> to any port ssh queue ssh pass in on extif proto tcp from <allowedclients> to any port www queue https pass in on extif proto tcp from <allowedclients> to any port www queue www pass in on extif proto tcp from <allowedclients> to any port smtp queue smtp pass in on extif proto tcp from <allowedclients> to any port ftp queue ftp pass out on extif inet proto udp from any to <allowedclients> port msn queue msn pass out on extif inet proto udp from any to <allowedclients> port ssh queue ssh pass out on extif inet proto udp from any to <allowedclients> port www queue https pass out on extif inet proto udp from any to <allowedclients> port www queue www pass out on extif inet proto udp from any to <allowedclients> port smtp queue smtp pass out on extif inet proto udp from any to <allowedclients> port ftp queue ftp *B:B$., B8B8,.B$B:*B(B(B(*B$ Stingray *B:B$., B8B8,.B$B:*B(B(*B$      |
Linear Mode
