Actually I would like to limit the access during office hour. So Time interval base rule means: user is only allowed to access specific application and destination based from the time interval. For example: Finance Department user is only allowed to access facebook website after office hour (after 6PM onwards) and only on friday.
If I didn't add the time interval, they can spend their time for browsing and chatting on facebook instead of working. What do you mean by "one-hit" rules? Regards, Stefan ________________________________ From: Christiano F. Haesbaert <haesba...@openbsd.org> To: Stefan N <stefanbsd...@yahoo.com> Cc: "misc@openbsd.org" <misc@openbsd.org> Sent: Friday, September 2, 2011 8:14 PM Subject: Re: Time interval based pf rule On 2 September 2011 09:11, Stefan N <stefanbsd...@yahoo.com> wrote: > Hi Jim, > > If I used anchor to create pf rules which means there is another > configuration needs to be taken care. > Beside /etc/pf.conf, we need to take care and maintain crontab for > schedulling. > What are you trying to accomplish with timer based rules ? Recently "one-hit" rules were added, depending on your problem that might solve it.