firewall

  1. S

    PF PF Portfowarding HTTP Sometimes can be opened sometime can't be opened

    Hello everyone. to the point, I would to ask something about port portforwarding. is portforwarding very slow connection? My friends opened my server actually is really fast (about 20ms). But when I opened it, it is very slow to opened the web from the my ip public. sometime when I opened it is...
  2. damjank

    FreeBSD 12.0-RELEASE Update successful but kernel modules can not be loaded anymore

    Hello Guys. I installed fresh installation of FreeBSD 12.0 minimal; I then installed minimal packages, the rest was done via ports. I did freebsd-update fetch in install - it wen along OK. Afterwords I get errors like: kldload: can't load pf: Operation not permitted and kldload: can't load...
  3. F

    IPFW ipfw filter for tcp IPv6 on Freebsd 11

    Hi I am using ipfw for firewalling on a FreeBSD 11 box. Unfortunately I cannot wrap my head around the fact that/why the following rule does not match when I initiate a TCP connection to 2a00:1450:4001:814::2003 (that is Google...): ipfw add 340 set 5 count dst-ip6 2a00:1450:4001:814::2003...
  4. M

    PF Rule diagnostics - Halp!

    Hi there all, first post here so just say if I've a mistake, besides, well... my pf rules. 😀 I've created this rule configuration while I was experimenting with OpenBSD. I'm not a programmer, just a consumer so I don't even know what these are meant for other than from what I read for about...
  5. P

    The default/optimal firewall settings

    I learned that freebsd doesn't have a firewall running out of the box. I have no network knowledge. And as a desktop user, I find it a little bit unneccesary to learn little to moderate level of networking. Is there a GUI I can use to configure my fiewall to optimal settings?
  6. K

    Solved ipfw + NAT mystery

    So I just learned that there's two methods to doing NAT in FreeBSD. The apparently old natd + divert way, which is documented in the handbook, and the new in-kernel ipfw+nat way, that is randomly documented by Google. Is anyone ever going to update the handbook to over ipfw+NAT? The man page...
  7. M

    PF Rules must be in order: options, normalization, queueing, translation, filtering

    Hello guys, Can you help? I know There was a similar topic, but I did not understand the answer. I have rules for my BSD System for defend apache. I have error: /usr/local/etc/pf.conf:31: Rules must be in order: options, normalization, queueing, translation, filtering I do not understand...
  8. Angelo Klin

    IPFW Private VPN + Firewall on a VPS

    Hello All, With all the fuzz and issues with security and privacy these days I decided to give it a go with a VPN, mostly for the fun and challenge. I am partially done with a scenario that sounds very typical these days, although it is not necessary plain vanilla. The overall idea is...
  9. Y

    lte 4g common usage and gaming

    On lte 4g i recognised some crashing behaviours which didn't occur on cable. This happens with wine and other sensitive programs. set: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters autodisconnect decimal -1 change mtu on your network-card-settings down to your...
  10. Y

    ipfw kernel panic solution

    I don't know if it's Ryzen which is causing this and if it's the Ryzen-bug or if it is something else. Commands like this are causing kernel-panics: ipfw table test create type number algo number:array ipfw table test add 1001 ipfw table test add 1002 ipfw table test add 1003 ipfw table test...
  11. B

    Mount two firewalls

    I want to mount a firewall. I have the idea of that my traffic could be "sniffered" by somebody. So I will ask for how to mount a firewall, here, on my desktop installation but also on another equipment. Besides, I want to know what else can I do for making the most miserable the attack of a...
  12. N

    Looking for 1on1 help preferably in person (Toronto Area)

    Hello Everyone! I am a regular linux user of about 10 years. I am now looking to learn freeBSD. icsdhcp,gateways,ipsec and pf, ect. I am using vmware to create my network and finding that i read a doc on dhcp.conf and realize 1h later its for a version 2 years old and openBSD. I would like...
  13. L

    PF Communication between fail2ban and pf fails

    EDIT: the problem is solved Hello, i had used Debian at the last several years and i'm very new to FreeBSD. I tryed to port my configuration for fail2ban from my Debian machines to FreeBSD (with the modification due the firewall has changed). In my testing phase i have found out that the...
  14. usernamekiran

    Solved Firewall for home user?

    Hello. I am using 11.1 on my two laptops. One has a wireless card which currently not supported, other's wireless card is out of order. I have 8.1 on my one laptop, and desktop none of which have wireless connectivity. I dont have a technical use of FreeBSD on these four machines. I use them as...
  15. A

    IPFW Why can I add port numbers to established and what does that do ?

    Almost every single ipfw ruleset I create has this as the very first rule: allow tcp from any to any established ... and I just noticed that ipfw allows me to specify a port on this rule: allow tcp from any to any 22 established If I create a new connection to port 22, I need a rule to allow...
  16. A

    PF pf.conf and Network issue

    Hi, Quick question. What could be the issue why I cannot ping my jail from local machine or local machine from jail? I thought it is pf.conf rdr somewhere wrong but now I am thinking about routing table not right. I can access anything from outside to jail. I have teamspeak3 server and if I...
  17. J

    PF Why does reloading pf.conf kill my ssh session?

    Hello, each time I reload my pf.conf using the command: pfctl -F all -f /etc/pf.conf my ssh session dies. It does not just hang for a few seconds. It simply dies and I have to launch a new one. This happens even though both the old and the new configurations allow incoming connexion to the ssh...
  18. W

    Solved OpenVPN IPv6 PF set

    Hey folks, I'm in progress of migrating my centos openvpn dualstack server to freebsd. I got a problem with ipv6 connection and im not shure what is the problem. IPv4 is working fine through the tunnel. IPv6 icmp is possible, but nameservers are not reachable on :53 or anything else except via...
  19. GregTheHun

    Solved Is my pf configuration crazy?

    OK, after reading the handbook several times, my brain is just not getting what is wrong with my pf.conf: set block-policy return block in all pass out all keep state pass in on wlan0 inet6 proto tcp from port 50000 keep state pass in on wlan0 inet proto tcp from port 50000 keep state As far...
  20. T

    Solved FreeBSD 11.0 firewall network throughput on dell optiplex gx1

    Hello, From 2006 to now I've been running FreeBSD 6.1 on a Dell Optiplex GX1. It has a 500MHz CPU with 128MB of RAM and an Intel 82546 chipset dual port gigabit ethernet PCI card. It's been running great but I decided it's time to upgrade FreeBSD. I proceeded to install FreeBSD 11.0-RELEASE...
Top