Hello,
I have a common ipf/ipnat internet gateway setup with two interfaces:
ex0 is the internal interface
rtk0 is the external interface
Now while checking the ipf ruleset I realised I didn't know for sure if
the following is correct; can anyone correct me if it's wrong?
block in on ... will block into that interface
block out on ... will block out of that interface
If we "block in on rtk0 ..." this will block incoming connections from
the internet
If we "block out on rtk0 ..." this will block outgoing connections from
our internal network to the internet
If we "block in on ex0 ..." this will block incoming connections from
the internal network to the gateway
If we "block out on ex0 ..." this will block connections out of the
internal interface into ... the external interface?
Basically when I want to restrict access to one machine on the internal
network I:
block in log quick on ex0 from that_machine to any
Which as I understand it will block any incoming connection from that
machine to the gateway, thereby completely blocking its access as it
will never reach the external interface...
Thanks,
Amadeus
