Re: pf.conf newbie help
From: Dave Uhring (daveuhring_at_yahoo.com)
Date: 08/25/04
- Previous message: Dennis Russo: "Re: pf.conf newbie help"
- In reply to: Dennis Russo: "Re: pf.conf newbie help"
- Next in thread: Dennis Russo: "Re: pf.conf newbie help"
- Reply: Dennis Russo: "Re: pf.conf newbie help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 24 Aug 2004 21:19:51 -0500
On Tue, 24 Aug 2004 18:32:16 -0700, Dennis Russo wrote:
> I am sure the nameserver is working.
How are you sure? Does its /etc/resolv.conf look like this?
[root]# cat /etc/resolv.conf
lookup file bind
nameserver 127.0.0.1
If you are in an ssh session to the server does it resolve openbsd.org?
[root]# host openbsd.org
openbsd.org has address 199.185.137.3
> When I comment out everything
> except the nat and add pass in all/pass out all rules, it works great
> (both for computers accessing the web from behind the obsd box and
> computers trying to access from the internet). I don't want to
> firewall packets from my LAN, I want to firewall packets to my LAN.
You should not have any 'pass in' or 'pass out' rules with $IntIF as one
of the arguments to the rules, except for:
pass in on $IntIF all
pass out on $IntIF all
- Previous message: Dennis Russo: "Re: pf.conf newbie help"
- In reply to: Dennis Russo: "Re: pf.conf newbie help"
- Next in thread: Dennis Russo: "Re: pf.conf newbie help"
- Reply: Dennis Russo: "Re: pf.conf newbie help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
