| Building The Network You Need With PF, The OpenBSD Packet Filter: BSDCan 2016, Ottawa, Canada, June 8th 2016 | ||
|---|---|---|
| Prev | Next | |
match tcpdump output to pfctl -vvsr output
$ sudo pfctl -vvsr @0 match in log all scrub (no-df max-mss 1440) [ Evaluations: 57 Packets: 18 Bytes: 3016 States: 5 ] [ Inserted: uid 0 pid 8200 State Creations: 0 ] @1 match out log on xl0 inet6 from 2001:16d8:ccbc:baad::/64 to any queue(q_def, q_pri) nat-to (xl0:1) round-robin static-port [ Evaluations: 57 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 8200 State Creations: 0 ] @2 match out log on xl0 inet6 from 2001:16d8:ccbc:dead::/64 to any queue(q_def, q_pri) nat-to (xl0:1) round-robin static-port [ Evaluations: 0 Packets: 0 Bytes: 0 States: 0 ] [ Inserted: uid 0 pid 8200 State Creations: 0 ] @3 match out log on xl0 inet from 10.0.0.0/8 to any queue(q_def, q_pri) nat-to (xl0:1) round-robin static-port [ Evaluations: 31 Packets: 12 Bytes: 2343 States: 2 ] [ Inserted: uid 0 pid 8200 State Creations: 0 ] @4 match out log on xl0 inet from 192.168.103.0/24 to any queue(q_def, q_pri) nat-to (xl0:1) round-robin static-port