I am puzzled still. No one can explain why it is bloated junk. It would assist people who need to handle complex applications with their firewall.
Anyways, it isn't a big deal. I understand that netfilter on Linux can perform this functionality. I will simply switch over to a Linux box as my firewall. Thanx everyone! Chris -----Original Message----- From: Henning Brauer <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Date: Mon, 12 Aug 2002 10:25:24 +0200 Subject: Re: Newbie Question (one of many to come) > On Sat, Aug 10, 2002 at 06:21:26PM -0700, Chris Willis wrote: > > enet = ne3 > > inet = xl0 > > X=192.168.100.100 > > If port 5000 from $X to any on $inet then > > pass all in $enet udp 4900-4901 > > rdr udp 4900-4901 to $X > > else block in all in $enet udp 4900-4901 > > > > X should be variable (depending on what machine is trying to do the > > outbound traffic) > > enet is my external network card (attached to a router on the > internet) > > inet is my internal LAN (192.168.100.1) > > > > This would not require any authentication, since my internal > workstation > > is a trusted entity already (its my own computer). > > > > This would be VERY useful functionality to have in pF. > > No. That's bloated junk. >
