Brannmur med OpenBSDs pakkefilter PF:
ForrigeNeste

Enkel gateway med NAT (forts.)

Sjekk om grensesnittene er oppe med

ifconfig -a

/etc/pf.conf

ytre = "xl0" # makro for ytre gr.snitt - bruk tun0 for PPPoE
indre = "xl1"  # makro for indre gr.snitt
nat on $ytre from $indre:network to any -> ($ytre) # dynamisk ekstern IP-adresse
block all
pass from { lo0, $indre:network } to any keep state

eller kanskje

klient_ut = "{ ftp-data, ftp, ssh, domain, pop3, auth, nntp, https, 446, cvspserver, 2628, cvsup, 8000, 8080 }"

pass quick inet proto { tcp, udp } to any port $udp_tjenester keep state

pass inet proto tcp from $indre:network to any port $klient_ut flags S/SA keep state

pass in inet proto tcp from any to any port ssh