pf rules

Discussion in 'Linux & BSD' started by Dark Atheist, Mar 24, 2008.

  1. Dark Atheist

    Dark Atheist Moderator Political User Folding Team

    Messages:
    6,376
    Location:
    In The Void
    ths is my pf.conf file

    xt_if = "re0"
    int_if = "em0"

    block in on $ext_if from any to any
    pass in on $int_if from { 164.168.1.1/24 } to any
    pass in on $ext_if from { 192.168.1.1/24 } to any
    table <dns:names> { some.dns.name1, somedns.name2, somedns.name3, some.dns.name4 }
    pass in on $ext_if from <dns:names> to any

    which i have since found is to restirctive, as i can get any port updates nor an updates from the vcddb web sorftware i used to show off my video collection.

    Would it be an idear to place portsnap. portsnap1 etc into the dns names along with the dns name of the site vcddb uses to update ?
     
  2. LordOfLA

    LordOfLA Godlike!

    Messages:
    7,027
    Location:
    Maidenhead, Berkshire, UK
    pass out on $ext_if from any to any modulate-state
     
    Dark Atheist likes this.
  3. Dark Atheist

    Dark Atheist Moderator Political User Folding Team

    Messages:
    6,376
    Location:
    In The Void