On 15/06/2023 19:07, Peter Nicolai Mathias Hansteen wrote:
>> On 15 Jun 2023, at 16:26, Kapetanakis Giannis
>> wrote:
>> After applying some keep state (if-bound) on major rules, I 've already
>> found a problem.
>>
>> pfsync.
>>
>> It copies the interface. The interfaces are different on the
0
C Australia
P Victoria
T Melbourne
Z 3001
O Applied OpenBSD
I Duncan Hart
A GPO Box 4184
M dun...@appliedopenbsd.com
U https://www.appliedopenbsd.com/
B +61 03 7065 5840
N Proactively secure application development and consultancy for IBM
Power platforms.
Registration for @eurobsdcon 2023 is open.
Check out the program at https://2023.eurobsdcon.org/program/, then go to
https://registration.eurobsdcon.org/ and register.
Early bird rates apply before July 15th, 2023.
Go register!
See you in #Coimbra, #Portugal September 14-17, 2023!
> On 15 Jun 2023, at 16:26, Kapetanakis Giannis
> wrote:
> After applying some keep state (if-bound) on major rules, I 've already found
> a problem.
>
> pfsync.
>
> It copies the interface. The interfaces are different on the backup firewall
> so the states will not match if I demote
On 15/06/2023 17:17, Kapetanakis Giannis wrote:
> Hello,
>
> I'd like to make a change to my firewall/router from the default state-policy
> floating to if-bound
>
> I believe the way my pf.conf is configured it will not do any harm but I'm
> being cautious here and I'd like some info.
>
> The
Hello,
I'd like to make a change to my firewall/router from the default state-policy
floating to if-bound
I believe the way my pf.conf is configured it will not do any harm but I'm
being cautious here and I'd like some info.
The way I see it, I have two states for each packet traveling either
On Thu, Jun 15, 2023 at 07:17:45AM -, distantp...@danwin1210.de wrote:
>
> Thats it, "rcctl start tor" works flawlessly, "sh /etc/netstart" too, and
> "pfctl -f /etc/pf.conf" does not spit out any warnings or errors either,
Yes, at first blush by visual inspection the file you present is a
>
>
> "pfctl -f /etc/pf.conf" does not spit out any warnings or errors either,
> so I first assumed it would work just as flawlessly then, but apparently
> it doesnt, because I cant ping any domain or wget any webpage, when I
>
If you add "log" rules to your pf.conf and the watch the pflog device
Hey there,
as I am completely new here, I might do something against the netiquette here
in the mailing lists, so correct me if I am wrong and I will try to adjust.
I am trying to set up a transparent Tor proxy on OpenBSD with pf(4), but I
couldnt find any helpful resources in the FAQ or the
9 matches
Mail list logo
