As I understand 'The PF + Bridge Caution' - it is a risk of tanglefoot - as
packets are going in and out of at least two interfaces, giving four PF
filtering scenarios, it is easy to get it wrong or not get a small bit of it
just right - especially if you are keeping states. The rule of thumb is t
On Fri, Feb 28, 2003 at 10:59:08PM +0100, Henning Brauer wrote:
> On Thu, Feb 27, 2003 at 08:07:14PM +0100, Henning Brauer wrote:
> > On Thu, Feb 27, 2003 at 01:09:54PM -0500, Jason Dixon wrote:
> > > This appears to work fine. However, if I add "control" to the std
> > > queue, a flush/reload of
On Thu, Feb 27, 2003 at 08:07:14PM +0100, Henning Brauer wrote:
> On Thu, Feb 27, 2003 at 01:09:54PM -0500, Jason Dixon wrote:
> > This appears to work fine. However, if I add "control" to the std
> > queue, a flush/reload of PF tells me this:
> > pfctl: DIOCADDALTQ: Invalid argument
> I'll look
On Fri, Feb 28, 2003 at 06:29:19PM +, siivv wrote:
> Is a connection with the checkpoint secureremote client possible through a
> obsd 3.2 nat'd pf firewall? I am refering to an outbound connection from
> my home network, through the pf fwall, and to the checkpoint fwall
How about more inform
On Fri, 28 Feb 2003 10:21:55 +0100
Daniel Hartmeier <[EMAIL PROTECTED]> wrote:
>On Thu, Feb 27, 2003 at 10:13:55PM -0800, Ben Lovett wrote:
>
>> All in all, I'm seeing a great improvement. My connection is ADSL
>> 1.5M/384, and the sweet spot for my connection appears to be 330Kbit/s.
>> I'll do
Ignore this I guess it was cached...:-/
I shoulda checked that...*grumble*
On Fri, 2003-02-28 at 10:06, Bryan Irvine wrote:
> nevermind, I figured it out. I needed to add another rdr rule.
>
> My interpretation was that you could only forward one port per machine
> running NAT, but I tried i
Is a connection with the checkpoint secureremote client possible through a
obsd 3.2 nat'd pf firewall? I am refering to an outbound connection from
my home network, through the pf fwall, and to the checkpoint fwall
I have read that it is not possible with NAT, but figured I would run it
by those
nevermind, I figured it out. I needed to add another rdr rule.
My interpretation was that you could only forward one port per machine
running NAT, but I tried it out and I guess it's forward one port per
nat'd interface. Anyone care to correct me?
--Bryan
On Sat, 2032-02-28 at 02:01, Bryan Irv
I have a firewall that I just build with 4 ethernet cards, and I"m
having some strange problems with it.
I have some rdr rules to a webserver hiding on 192.168.0.9 that work
from anywhere else except from the other NAT.
Ideas?
--Bryan
64.1.201.129
|
On Thu, Feb 27, 2003 at 10:13:55PM -0800, Ben Lovett wrote:
> All in all, I'm seeing a great improvement. My connection is ADSL
> 1.5M/384, and the sweet spot for my connection appears to be 330Kbit/s.
> I'll do some more playing around with it tomorrow to see if I can get
> better speeds, but
10 matches
Mail list logo
