c421 [Solved] PF Issue with Blocking - The FreeBSD Forums
The FreeBSD Forums  

Go Back   The FreeBSD Forums > Server & Networking > Firewalls
Reload this Page [Solved] PF Issue with Blocking
Register FAQ Calendar Search Today's Posts Mark Forums Read

Firewalls IPFW, PF, IPF (but not limited) related discussion

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old August 5th, 2011, 14:24
jperalta jperalta is offline
Junior Member
  
Join Date: Feb 2009
Posts: 7
Thanks: 1
Thanked 0 Times in 0 Posts
Default PF Issue with Blocking
I'm currently running PF on FreeBSD 8.2-STABLE. My current PF rules look like...

Code:
block in
block out on $ext_if all
pass out on $ext_if inet proto tcp from ($ext_if) queue ( std_out, tcp_ack_out )
pass out on $ext_if inet proto { udp icmp } from ($ext_if)
pass out on $ext_if inet proto { tcp udp } from ($ext_if) to port domain queue dns_out

pass in quick on $int_if no state
pass out on $int_if from $int_if to ($int_if:network)
pass out on $int_if proto { tcp udp } from port domain to ($int_if:network) queue dns_in
pass out on $int_if to 192.168.1.21 queue x360
When I add
Code:
block out on $int_if all
before the first pass out rule for $int_if none of my LAN computers can access either the server or the internet any longer.

Any help with this would be most appreciated. Thanks.
Reply With Quote
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Help with non-blocking IO soundstep Userland Programming & Scripting 1 January 12th, 2011 15:02
PF blocking nmap bbzz Firewalls 13 December 24th, 2010 16:29
L7 script for skype blocking mrowcp Firewalls 1 April 26th, 2010 13:01
SSHGuard not Blocking Connections Lego Web & Network Services 49 November 21st, 2009 19:26
Blocking IP addresses dpalme Firewalls 6 November 18th, 2009 21:20


All times are GMT +1. The time now is 23:31.

Contact Us - FreeBSD - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.
The mark FreeBSD is a registered trademark of The FreeBSD Foundation and is used by The FreeBSD Project with the permission of The FreeBSD Foundation.
Web protection and acceleration provided by CloudFlare
0