On Tuesday, August 30, 2005, [EMAIL PROTECTED] wrote:
> So my problem is that i can't access any of my web server via internet
but it works in local
Locate these pf.conf rules:
> block all
> pass in on $ext_if proto tcp from any to $web_srv port 80 flags S/SA
synproxy state
> pass in on $ext_if proto tcp from any to $web1_srv port 81 flags S/SA
synproxy state
Change to:
block log all
pass in on $ext_if proto tcp from any to { $ext_if $web_srv } port 80
flags S/SA synproxy state
pass in on $ext_if proto tcp from any to { $ext_if $web1_srv } port 80
flags S/SA synproxy state
use tcpdump -i pflog0 -qntte for additional troubleshooting
This should do it. -T
-----------------------------------------------------------------------
Todd M. Boyer, CISSP
President AutumnTECH, LLC
[EMAIL PROTECTED] http://www.AutumnTECH.com
AutumnTECH Manufactures Entire Network Protection Appliances
that Identify Spam and Sanitize Dangerous E-mail Content
-----------------------------------------------------------------------
