kenneth2k1 <[EMAIL PROTECTED]> writes: > Does the syntax "any" work as a source or destination when setting up my > rule?
"any" is valid as a source, destination or both if that's what you need to express. > Is a protocol always necessary on my rules? not always, but in practical terms, most of your rules will need to specify protocol. > What does the Family Address represent? What does inet mean and when should > I use it? That's probably "Address family". inet is IP version 4, as distinct from inet6 which denotes IP version six. > Here is what the pfw interface has as my rules after I configured them in > the web browser. I am sure there are mistakes here, so if someone could show > me what I'm doing wrong, that would be GREAT!!! That does not look like a complete rule set. If you do all your filtering on $ext_if that's fine, but then we would need to know that (or see the complete rule set, if necessary with key data shrouded). Now don't take this as anything personal, but your message reminds me why I'm sceptical when it comes to pfw and other point'n'click frontends. They're only really useful if you know what you're doing, and if you /do/ know what you're doing it's probably quicker to just edit pf.conf and be done with it. The general recommendation is to go to the normal information sources such as man pf.conf, man pfctl, <http://www.openbsd.org/faq/index.html>, and just to toot my own horn, there's word out that those *excellent* references are a little easier to take in usefully after you've spent some time browsing <http://home.nuug.no/~peter/pf/> (also nostarch.com may have the perfect xmas present for you). -- Peter N. M. Hansteen, member of the first RFC 1149 implementation team http://bsdly.blogspot.com/ http://www.datadok.no/ http://www.nuug.no/ "Remember to set the evil bit on all malicious network traffic" delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
