Discussion:
pf version
Zoran Kolic
2014-09-18 14:06:30 UTC
Permalink
What is pf firewall version on current (7.99)?
I plan to istall on rpi. Rules are already made,
but I'm aware that version might be a bit old
and syntax not the same as on openbsd.
Best regards

Zoran
Jeremy C. Reed
2014-09-18 14:22:36 UTC
Permalink
Post by Zoran Kolic
What is pf firewall version on current (7.99)?
I think it is from OpenBSD 4.2 and 4.3-current. See the src/doc/3RDPARTY
file about it.
Post by Zoran Kolic
I plan to istall on rpi. Rules are already made,
but I'm aware that version might be a bit old
and syntax not the same as on openbsd.
You may want to consider learning NPF which is maintained in NetBSD.
Probably some here can help you convert rules as needed.
Zoran Kolic
2014-09-18 14:29:31 UTC
Permalink
Post by Jeremy C. Reed
I think it is from OpenBSD 4.2 and 4.3-current. See the src/doc/3RDPARTY
file about it.
Pretty old. :)
Post by Jeremy C. Reed
You may want to consider learning NPF which is maintained in NetBSD.
Probably some here can help you convert rules as needed.
I read tutorial and stayed puzzled.
Let's try:

set skip on lo0
match in all scrub (no-df)
block in all
block out all
pass out on fxp0 proto { tcp, udp, icmp } from any to any modulate state
pass in on fxp0 proto tcp from any to any port ssh

I still have some time to consider npf.
Best regards all

Zoran

Loading...