On 2010 May 12 (Wed) at 21:28:03 +1000 (+1000), Rod Whitworth wrote:
:Particularly seeing I referenced both of those in my original post as
:not being helpful and I've been trying to get somebody - anybody - to
:write a minimal NAT ruleset and show me.
The ruleset I use on my laptop (which sometimes provides network for
experimental boxes), is simply thus:
pass # to establish keep-state
# By default, do not permit remote connections to X11
block in on ! lo0 proto tcp to port 6000:6010
match out log on egress from !(egress) to any nat-to (egress:0)
--
One is not superior merely because one sees the world as odious.
-- Chateaubriand (1768-1848)
