source limiting NATed connections
Vasily Ivanov
freebsdpf at academ.org
Wed May 23 05:38:19 UTC 2007
Hi!
I am using PF on my external gateway, and wondering if it is possible to
source limit state entries created by nat rules.
When I try to put rule like this: "nat on $ext_if from $private_net to any ->
$nat_addr (source-track rule, max-src-states 10)" into pf.conf I get
a "syntax error" message.
There're no other rules besides firewalling the gateway itself in pf.conf.
Thanks a lot.
--
Vasily Ivanov
More information about the freebsd-pf
mailing list