Stuart Henderson writes:
> i think it's simpler if you write this as one rule:
>
> pass in quick on $ext_if proto tcp from $work_hosts to $ssh_host \
> port ssh rdr-to $ssh_host modulate state
Not quite, since $ssh_host is on the private IP network
This is the rule
pass in log quick on
Stuart Henderson writes:
> i think it's simpler if you write this as one rule:
>
> pass in quick on $ext_if proto tcp from $work_hosts to $ssh_host \
> port ssh rdr-to $ssh_host modulate state
I've done that after looking at Peter's presentation :)
> is there any change if you remove 'mo
lheck...@users.sourceforge.net writes:
> I've used the same pf.conf for years with only minimal changes, but 4.7
> broke it, and I can't seem to fix it.
>
> The OBSD machine is a firwall between a cable modem and a private IP LAN.
> Previously, I used these rules to allow ssh access from speci
3 matches
Mail list logo
