blackhole in PF possible?

Peter N. M. Hansteen peter at bsdly.net
Sun May 25 14:07:33 UTC 2008


"Ighighi Ighighi" <ighighi at gmail.com> writes:

> Is there a way to get the same functionality in PF so I can restrict
> those packets to external interfaces ?

block drop in all on $ext_ifs or something like that would have some
of the desired effect.  not sure how much it actually buys you, but
it's quite similar to blackhole.

-- 
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.


More information about the freebsd-pf mailing list