Re: Best way to write FTP rule without ftp-proxy?
The ftp-proxy mechanism has changed, please read the PF-faq in http://www.openbsd.org/faq for update it. Regards. --- IMS [EMAIL PROTECTED] wrote: Hi all I'm newbie with pf, just try for a few weeks. Now I try to write ftp rule, but after reading from many book. I found that they guide to use ftp-proxy. But my production site don't allow to use that. how could I write rule for ftp? I have about 200 clients. one firewall with nat rules. All user need to use ftp to internet. Thanks so much. :D Fco.Valladolid Hdez. [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Re: Redundant Failover Firewalls
hi, I hope will be usefuel for you. http://www.kernel-panic.it/openbsd/carp/index.html Best Regards. --- John Brooks [EMAIL PROTECTED] wrote: I am needing to build two identical failover firewalls with openbsd, pf, pfsync, and carp. So far simple enough, with so many articles and examples available. All of these are using NAT. However, I am needing to use public IP's out of a /25 allocation, without NAT. I have not been able to find any articles or examples that discuss doing this in a routed manner. Two articles on redundant bridging firewalls seem to be workable, but either need expensive switches or have extended failover times of greater than 1 minute. Can anyone point me towards articles or examples of non-nat routing on OpenBSD? -- John Brooks [EMAIL PROTECTED] spamassassinexception Fco.Valladolid Hdez. [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
pf rules on the fly
Hi, folks is possible run rules on the command line via pfctl command ? there are situations where temporary rules are usefuls. Regards. Fco.Valladolid Hdez. [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com