Ive been working with some examples of pf.conf trying to get my own firewall up and running. I have several questions probably but i'll start with what I think is a simple one. I found a sample pf.conf that had a couple of rules in it that I dont quite understand.
1.
The table is.
I understand this table and what it is for. What I dont understand is why this rule has </rfc1918> and also <rfc1918>
2.
This table is
Once again I understand "sort of" the table created for this. The { self } is not 100% clear. Once again I see the same thing only this time there is a !</firewall> and <firewall>. Can anyone explain this usage to me?
1.
Code:
block in log quick on $ext_if from </rfc1918><rfc1918> to any
The table is.
Code:
table <rfc1918> const { 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 }
I understand this table and what it is for. What I dont understand is why this rule has </rfc1918> and also <rfc1918>
2.
Code:
pass in quick on $int_if inet proto { udp, icmp } from $pvt_net to !</firewall><firewall> keep state
This table is
Code:
table <firewall> const { self }
Once again I understand "sort of" the table created for this. The { self } is not 100% clear. Once again I see the same thing only this time there is a !</firewall> and <firewall>. Can anyone explain this usage to me?