OpenForum RSS: PF �� .

PF �� . (MadMax74)

Sun, 21 Jun 2009 17:22:42 GMT

>
>>�� : ��-�� pppoe (�� ) pf ��
>>�� . � �� ,
>>�� .
>
>�� pf �� pppoe

� �� ?

P.S. �� , �� ݣ ��̣� �� .

PF �� . (argo)

Sat, 20 Jun 2009 14:00:07 GMT

>�� : ��-�� pppoe (�� ) pf ��
>�� . � �� ,
>�� .

�� pf �� pppoe

PF �� . (MadMax74)

Wed, 10 Jun 2009 12:44:50 GMT

�� , �� drop �� , �.�. �� . �� ӣ �� .

�� ӣ �� ... �� pppoe. �� dedicated �� .

�� : ��-�� pppoe (�� ) pf �� . � �� , �� .

PF �� . (y)

Tue, 09 Jun 2009 10:36:59 GMT

>[�� ]
>�� 3128 (Squid) � 80 (�� ) ��,
>�.�. telnet �� .
>
>�� sshd � squid, �� .
>
>�� ?
>
>� �� -�� . ��
>10 �� ssh ��, �� 30-40 ��
>�� ssh �� .

� �� "pass out keep state"
�� - �� - � �� - �� - �� , ��
�� block-policy (�� ) ��

PF �� . (MadMax74)

Wed, 15 Apr 2009 05:49:40 GMT

�� , �� pfctl -sr:

xl0 - �� , fxp0 - �� , � tun0 - �� ppp �� fxp0

scrub in all fragment reassemble
block drop in log all
pass out all flags S/SA keep state
anchor "ftp-proxy/*" all
block drop in on ! xl0 from (xl0:network) to any
block drop in from (xl0) to any
block drop in on ! fxp0 from (fxp0:network) to any
block drop in from (fxp0) to any
block drop in on ! tun0 from (tun0:network) to any
block drop in from (tun0) to any
block drop in on ! lo0 from (lo0:network) to any
pass in on fxp0 inet proto tcp from any to <ip> port = ssh flags S/SA keep state
pass in on tun0 inet proto tcp from any to <ip> port = ssh flags S/SA keep state
pass inet proto icmp all icmp-type echoreq keep state
pass inet proto icmp all icmp-type echorep keep state
pass quick on xl0 all flags S/SA keep state

��: �� 80 (�� ) � 3128 (Squid, �� pf ��

PF �� . (MadMax74)

Tue, 14 Apr 2009 15:11:28 GMT

� �� . FreeBSD 7.2+PF+Squid

�� PF

# Filtering
block all
pass in on $ext_if inet proto tcp from any to ($ext_if) port ssh flags S/SA keep state
pass in inet proto icmp all icmp-type $icmp_types keep state
pass out keep state
pass quick on $int_if

�� 3128 (Squid) � 80 (�� ) ��, �.�. telnet �� .

�� sshd � squid, �� .
�� ?

� �� -�� . �� 10 �� ssh ��, �� 30-40 �� ssh �� .

PF �� . (local)

Thu, 22 Jan 2009 11:51:04 GMT

pfctl -sr ?

OpenForum RSS: PF �� ��������� ��������� �����.

PF �� ��������� ��������� �����. (MadMax74)

PF �� ��������� ��������� �����. (argo)

PF �� ��������� ��������� �����. (MadMax74)

PF �� ��������� ��������� �����. (y)

PF �� ��������� ��������� �����. (MadMax74)

PF �� ��������� ��������� �����. (MadMax74)

PF �� ��������� ��������� �����. (local)

OpenForum RSS: PF �� .

PF �� . (MadMax74)

PF �� . (argo)

PF �� . (MadMax74)

PF �� . (y)

PF �� . (MadMax74)

PF �� . (MadMax74)

PF �� . (local)