RE: How to test a firewall with NAT?
- From: Александр Шевченко <alexander.shevchenko@xxxxxx>
- Date: Sun, 19 Nov 2006 12:12:28 +0300
U can use "-n" flag for parsing rules before loading them
pfctl -nvvv -f /etc/pf.conf
Look at this port /usr/ports/sysutils/pftop
pftop displays the active packetfilter states, rules, and queues
-----Original Message-----
From: owner-freebsd-net@xxxxxxxxxxx [mailto:owner-freebsd-net@xxxxxxxxxxx]
On Behalf Of Gregory Edigarov
Sent: Friday, November 17, 2006 1:25 PM
To: freebsd-net@xxxxxxxxxxx
Subject: How to test a firewall with NAT?
Hello Everybody,
I am trying to move one of my servers/routers from linux/iptables to
freebsd/pf, and need a methodology of testing the pf firewall ruleset
before it will go in production. I cannot experiment on live network,
because it's a busy server.
I only have one other machine available.
What can I do and what tool can you recommend?
Thank you.
--
With best regards,
Gregory Edigarov
_______________________________________________
freebsd-net@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@xxxxxxxxxxx"
- References:
- How to test a firewall with NAT?
- From: Gregory Edigarov
- How to test a firewall with NAT?
- Prev by Date: Re: Serious em problems under -current on two different platforms
- Next by Date: Re: ping round trip times freebsd - windows
- Previous by thread: How to test a firewall with NAT?
- Next by thread: How to test a pf firewall with nat
- Index(es):
