Re: Migration to PF - some questions

Stephan A. Rickauer Thu, 08 Sep 2005 07:06:02 -0700

Ok, I'll make it more concrete. If a machine has traffic going over twointerfaces (router) a netfilter rule would look like this:


  iptables -A FORWARD -i in-iface -o out-iface ...


It looks like with pf one achieves that with:

  pass in on in-iface ...
  pass out on out-iface ...

Is that basically correct?

Thanks,

--

 Stephan A. Rickauer

 ----------------------------
 Institut f|r Neuroinformatik
 Universitdt / ETH Z|rich
 Winterthurerstriasse 190
 CH-8057 Z|rich

 Tel: +41 44 635 30 50
 Sek: +41 44 635 30 52
 Fax: +41 44 635 30 53

 http://www.ini.ethz.ch
 ----------------------------

Re: Migration to PF - some questions

Reply via email to