Hi folks, All the time I had the following entries in my pf.conf for my Desktop system. However, as I've bought this pf book that was lately released, I begin to suspect that these rules are way to liberal.
If I only want to be able to browse the web and maybe use ssh-client, how should I rewrite the rules so that only those ports are open (80,443 and 22)? I guess i'm looking forward to a RTFM answer, but hey, I wouldn't ask if I knew how to write them. The best I could guess is: pass out on $int_if proto tcp from any to any port 80 modulate state flags S/SA But I don't know if this is correct. Brgds Robert