On Sat, Feb 25, 2006 at 10:16:58AM -0600, Harry Putnam wrote:
> Joachim Schipper <[EMAIL PROTECTED]> writes:
>
> >> There is a facility on the NETGEAR to send all traffic to an inside
> >> machine for whatever reason. Its called a DMZ Server although I don't
> >> think that is the normal usage of
On 2/25/06, Harry Putnam <[EMAIL PROTECTED]> wrote:
> "Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
>
> > On a consumer-class Internet connection, I don't expect too much.
> > However, the following should only log ssh:
>
> That is what got me going on this... By negligence I'd left ssh open
>
Joachim Schipper <[EMAIL PROTECTED]> writes:
>> There is a facility on the NETGEAR to send all traffic to an inside
>> machine for whatever reason. Its called a DMZ Server although I don't
>> think that is the normal usage of DMZ, but not experienced enough to
>> know for sure.
>
> That would pro
On Fri, Feb 24, 2006 at 08:58:11PM -0600, Harry Putnam wrote:
> I want to use pf.conf in what may be an unusual place.
>
> Not the usual sheild between private net and internet.
> It would be more as a logging service but will need some config to
> allow two private net machines to access it.
>
>
"Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
> On a consumer-class Internet connection, I don't expect too much.
> However, the following should only log ssh:
That is what got me going on this... By negligence I'd left ssh open
after coming home from a trip where I had it open for connection
"Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
>> There is a facility on the NETGEAR to send all traffic to an inside
>> machine for whatever reason. Its called a DMZ Server although I don't
>> think that is the normal usage of DMZ, but not experienced enough to
>> know for sure.
>
> This migh
Harry Putnam wrote:
> "Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
> Thanks for the nifty summary. I want to pester you just a little more
> then I'll get to work on this and see if I get really stuck
> somewhere.
Sounds good ;-) .
> > # Address translation for machines on your LAN
> > nat
"Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
Thanks for the nifty summary. I want to pester you just a little more
then I'll get to work on this and see if I get really stuck
somewhere.
> # Address translation for machines on your LAN
> nat on $ext_if from $int_if:network to any -> ($ext_i
Harry Putnam wrote:
> "Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
> > > There is a facility on the NETGEAR to send all traffic to an
> > > inside machine for whatever reason. Its called a DMZ Server
> > > although I don't think that is the normal usage of DMZ, but not
> > > experienced enoug
ith your
network, and not only what's coming onto it, but what is also leaving it.
Mitch
-Original Message-
From: [EMAIL PROTECTED] on behalf of Melameth, Daniel D.
Sent: Fri 2/24/2006 10:12 PM
To: misc@openbsd.org
Subject: Re: pf.conf to log specific but block all
Harry Putnam wrote:
"Melameth, Daniel D." <[EMAIL PROTECTED]> writes:
>> There is a facility on the NETGEAR to send all traffic to an inside
>> machine for whatever reason. Its called a DMZ Server although I don't
>> think that is the normal usage of DMZ, but not experienced enough to
>> know for sure.
>
> This migh
Harry Putnam wrote:
> I want to use pf.conf in what may be an unusual place.
>
> Not the usual sheild between private net and internet.
> It would be more as a logging service but will need some config to
> allow two private net machines to access it.
>
> A network picture:
>
>
I want to use pf.conf in what may be an unusual place.
Not the usual sheild between private net and internet.
It would be more as a logging service but will need some config to
allow two private net machines to access it.
A network picture:
INTERNET
|
13 matches
Mail list logo
