PF, The OpenBSD Packet Filter: Building The Network You Need: BSDCan, Ottawa, June 10th 2015 | ||
---|---|---|
Prev | Next |
A PF table is a data structure for storing IP addresses for quick lookup.
table <clients> { 192.168.2.0/24, !192.168.2.5 }
the file /etc/clients
192.168.2.0/24 !192.168.2.5
in /etc/pf.conf
table <clients> persist file /etc/clients pass inet proto tcp from <clients> to any port $client_out
Here all members of the table match; unlike list macros, does not generate multiple rules.