Re: Translate IPFW rules to PF rules
- From: Ross Alexander <rwa@xxxxxxxxxxxxxx>
- Date: Fri, 22 Dec 2006 07:11:36 GMT
"Bert Moorthaemer" <nospam.bert.moorthaemer@xxxxxxxxxx> writes:
Second) there is the "me" keyword in IPFW which I use a couple of times
(there are 5 interfaces in my firewall with each an ip and aliases on them)
Is there a method in PF that leads to the same result as the "me" keyword?
first, get a table into scope and load it up with the necessary values:
table <SELF> persist { self };
then refer to <SELF> in the obvious way. DON'T write bare references
to "self" unless you like seeing all your rules multiplied by the
number of interfaces you have up (I have boxes where the cardinality
of <SELF> is on the high side of 50, so this is A Big Deal to me.)
regards,
Ross
.
- Follow-Ups:
- Re: Translate IPFW rules to PF rules
- From: Bert Moorthaemer
- Re: Translate IPFW rules to PF rules
- References:
- Translate IPFW rules to PF rules
- From: Bert Moorthaemer
- Re: Translate IPFW rules to PF rules
- From: Helmut Schneider
- Re: Translate IPFW rules to PF rules
- From: Bert Moorthaemer
- Translate IPFW rules to PF rules
- Prev by Date: Re: Translate IPFW rules to PF rules
- Next by Date: Re: [FB 6.1] VTK 5 & Qt4 in ports tree ?
- Previous by thread: Re: Translate IPFW rules to PF rules
- Next by thread: Re: Translate IPFW rules to PF rules
- Index(es):
Relevant Pages
|
