I am very very new to Open BSD, and we have a Twinguard firewall, with this pfw app installed. It allows for a web browser to configure the packet filter. I have some general questions if someone would like to help...
Does the syntax "any" work as a source or destination when setting up my rule? Is a protocol always necessary on my rules? What does the Family Address represent? What does inet mean and when should I use it? Here is what the pfw interface has as my rules after I configured them in the web browser. I am sure there are mistakes here, so if someone could show me what I'm doing wrong, that would be GREAT!!! Thanks!! # Network Rules pass in log on $ext_if from ipsec_users to 172.20.0.0 # Any in pass out log on $ext_if from 172.20.0.0 to ipsec_users # Any out pass in on $ext_if proto tcp from any to 172.20.255.108 port 5190 # AOL in pass out log on $ext_if proto tcp from 172.20.255.108 to any port 5190 # AOL out pass in on $ext_if from any to 172.20.255.108 port 5190 # AOL in pass out log on $ext_if proto tcp from 172.20.1.110 port 80 to any # Filtered-HTTP pass in on $ext_if proto tcp from any to 172.20.255.108 port 25 # Filtered-SMTP in pass out log on $ext_if proto tcp from 172.20.255.108 port 25 to any # Filtered-SMTP out pass in log on $ext_if proto FTP from 208.57.255.187 port 21 to 172.20.99.6 # FTP in pass out log on $ext_if proto FTP from 172.20.99.6 to any port 21 # FTP out pass in log on $ext_if proto tcp from 208.57.255.187 port 443 to 172.20.255.189 # HTTPS_Synxis in -- View this message in context: http://www.nabble.com/PFW...-ever-used-it--tf4753928.html#a13594236 Sent from the openbsd - packet filter mailing list archive at Nabble.com.
