filtering local traffic on nat gateway
Gilberto Villani Brito
linux at giboia.org
Tue Sep 25 08:21:04 PDT 2007
On 24/09/2007, Reinhard Haller <reinhard.haller at interactive-net.de> wrote:
> Hi,
>
> I want to restrict the locally generated outgoing traffic from the nat
> gateway (cvsup, ddclient i.e. http + https, portupgrade i.e. ftp + http)
> to the internet.
>
> How to distinguish forwarded traffic on tun0 from the local traffic
> after natting?
>
> Thanks
> Reinhard
>
> _______________________________________________
> freebsd-pf at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-pf
> To unsubscribe, send any mail to "freebsd-pf-unsubscribe at freebsd.org"
>
Try this:
block on $ext_if all
pass in on $int_if from <network> to any
--
Gilberto Villani Brito
System Administrator
Londrina - PR
Brazil
gilbertovb(a)gmail.com
More information about the freebsd-pf
mailing list