Output van 'sysctl net.inet | grep forward':
net.inet.ip.forwarding=1
net.inet.ip.mforwarding=0
This may sound strange, but I don't get an error message when booting. I
did have that problem because the word 'log' appeared in some lines, but
that has already been resolved. I'm going to apply a "step by step"
approach to the rules in pf.conf.
Op 11-04-2024 om 09:49 schreef Peter N. M. Hansteen:
On Wed, Apr 10, 2024 at 11:53:47PM +0200, Karel Lucas wrote:
With the new firewall I am setting up I cannot connect to the internet. That
starts with traceroute, so let's start there. Ping works fine. Below I have
listed my pf.conf file.
This sounds like you have a link to somewhere, at least.
The first question would be, when you say "I cannot connect to the internet",
where is this in relation to the host with the ruleset you quote?
Start with the basics - is the gateway set up to forward packets? The output of
$ sysctl net.inet | grep forward
will reveal the truth there.
And looking at the quoted ruleset, I find it rather unlikely that it will
actually
load -- you will get a "macro 'martians' not defined" and "unknown port
nportntp"
and likely a few "syntax error" messages as well.
I would advise to take a few steps back, start from the basics and add only the
things you know you need.
