PF, The OpenBSD Packet Filter: Building The Network You Need: BSDCan, Ottawa, June 10th 2015 | ||
---|---|---|
Prev | Next |
clients = "192.168.103/24" backupserver = "192.0.2.227" bacula_ports = "9101:9103" tcp_ports = "{ ftp, ssh, domain, ntp, whois, www, https, auth, nntp, imaps, \ rtsp, submission 8080:8082 }" udp_ports = "{domain, ntp}" block pass inet proto tcp from $clients to port $tcp_ports pass inet proto udp from $clients to port $udp_ports pass inet proto tcp from $backupserver to $clients port $bacula_ports
Load the sample file
$ sudo pfctl -vnf samples/example005