I have a few question about pf.
When i do "tcpdump -netttv -i pflog0" with it i get the rule number which
blocked the current packet. Is this the actual number in the "/etc/pf.conf"
file or actual number in "pfctl -s rules" ? Is rules like scrub or set
limit for example counted, are this rule
I am actually know designing the firewall my company would run through, I
basically need to masquerade internal 192.168.x.x network to the outside
world, and screen a lan of public ip addressed servers so they can access
and be accessed from the outside.
I do a similar thing, with two CARP
Hi there.
I manage several different pf firewalls around the country, and so I need
to have ssh access allowed. Occaisionally, (more and more often lately), I
get script kiddies having a go at brute forcing my root password (see below)
or brute forcing a selection of guessed account names (li
On Sep 23, 2004, at 9:29 AM, Michael Clark wrote:
If I was not here they would have no one to work on it.
Awesome logic. Why does the company do anything at all, then?
Well, it can be a telling point. For my part, I alleviated my Managing
Director's concerns about implementing OBSD + pf (inst
Sounds like a valid option, but I am sure they would rather just
hire a hardcore microsoft person and then just use the cisco
support to fix whatever problems they have.
Someone should start a PF pay for support program =)
Take money and give management people the warm fuzzy feelings.
I wish I had
In large deployments of pf-pfsyn-carp firewalls it would be useful to
maintain pf.conf with some form of archiving, version control, and
auditing. Can anyone advise on a system?, especially one that has been
tried and tested (SCCS?)...
I use and strongly recommend a system called Kara - basical
Hiya.
IS it possible to fail over OpenBSD + PF firewalls?
What are the impliocations if there are several VPNs terminated on the
firewall as well.
Cha
tefol
_
Check out MSN PC Safety & Security to help ensure your PC is protected
I don't know if this is the right place for all of this, but I can't seem
to get any info about this from anywhere, and I am hoping that the
knowledgable folk on this list might be the ones who know.
Is it possible to set up a VPN from a workstation using a VPN slinet (such
as SSH Sentinel) i