PF + PPPoE
Bill Marquette
bill.marquette at gmail.com
Mon Jan 16 23:20:04 PST 2006
On 1/17/06, derth at wbs.co.za <derth at wbs.co.za> wrote:
>
>
> >Without the ruleset it's going to be kind of difficult to help. This
> >does work, which means there's something wrong with your rules.
> >
> >--Bill
>
> My apologies, here is my pf.conf file:
>
> #define Macros
> ext_if = "tun0"
> int_if = "fxp0"
> tcp_services = "22"
> priv_net = "{ 127.0.0.0/8, 192.168.0.0/24, 172.16.0.0/12, 10.0.0.0/8 }"
> secure_mail ="196.*.*.*"
> tech_net ="196.*.*.*/24"
> admin_mweb ="196.*.*.*"
> allow_web ="{ 196.*.*.*, 196.*.*.*, 196.*.*.*, 196.*.*.*, tun0 }"
Interesting. After replacing the 196.* addresses with fake addresses,
pfctl parses this just fine on my FreeBSD 6 box. I did wrap tun0 in
the allow_web macro with paren's but pfctl -nf was happy with the
ruleset before and after and I've got no tun0. What's the error
you're getting?
--Bill
More information about the freebsd-pf
mailing list