ok I went ahead and opened up the lo, it still does not work. Adding
pass to the nat statement causes all nated packets to bypass all of the
other filter rules, this is not acceptable. once again the ruleset
works fine on OpenBSD, so what is different about pf on FreeBSD.
I do not believe th
On 7/26/06, Jeffrey Williams <[EMAIL PROTECTED]> wrote:
I am not running anything that is trying to use the loopback interface
on this box.
Blocking traffic on the loopback will cause many odd problems. Always use
set skip on lo
The following rule passes traffic in on the internal interface,
Morgan wrote:
pf.conf entries:
oif="em0"
onwr="o.o.33.40/29"
oip="o.o.33.46"
iif="em1"
inwr="i.i.10.0/24"
iip="i.i.10.1"
is1="i.i.10.15"
scrub in all
nat on $oif from $inwr to any -> $oif
rdr on $oif proto tcp from any to $oip port 1000 -> $is1 port 22
block in log all
pass in on $oif p
