diff options
author | Camiel Dobbelaar <camield@cvs.openbsd.org> | 2006-01-30 12:20:32 +0000 |
---|---|---|
committer | Camiel Dobbelaar <camield@cvs.openbsd.org> | 2006-01-30 12:20:32 +0000 |
commit | 2493df84b2a2dbd0fe3e80bc1d25d14e827f3177 (patch) | |
tree | 031f9afd656c3cb27c832db61a1b1da81ffba412 /etc | |
parent | 5920e1942b2f0a290cb75cf2720ddd786d55ea6d (diff) |
update for new ftp-proxy
ok henning@
Diffstat (limited to 'etc')
-rw-r--r-- | etc/pf.conf | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/etc/pf.conf b/etc/pf.conf index f1041162b0c..f41c2557ee1 100644 --- a/etc/pf.conf +++ b/etc/pf.conf @@ -1,4 +1,4 @@ -# $OpenBSD: pf.conf,v 1.30 2006/01/26 12:44:59 henning Exp $ +# $OpenBSD: pf.conf,v 1.31 2006/01/30 12:20:31 camield Exp $ # # See pf.conf(5) and /usr/share/pf for syntax and examples. # Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1 @@ -14,6 +14,8 @@ #scrub in +#nat-anchor "ftp-proxy/*" +#rdr-anchor "ftp-proxy/*" #nat on $ext_if from !($ext_if) -> ($ext_if:0) #rdr pass on $int_if proto tcp to port ftp -> 127.0.0.1 port 8021 #rdr pass on $ext_if proto tcp from <spamd> to port smtp \ @@ -21,6 +23,7 @@ #rdr pass on $ext_if proto tcp from !<spamd-white> to port smtp \ # -> 127.0.0.1 port spamd +#anchor "ftp-proxy/*" #block in #pass out keep state @@ -28,6 +31,5 @@ #antispoof quick for { lo $int_if } #pass in on $ext_if proto tcp to ($ext_if) port ssh keep state -#pass in on $ext_if proto tcp to ($ext_if) port > 49151 user proxy keep state #pass in log on $ext_if proto tcp to ($ext_if) port smtp keep state #pass out log on $ext_if proto tcp from ($ext_if) to port smtp keep state |