Hi Peter,
Message Submission Agent - it is SMTP but on a higher port, and is
intended (as I understand it) for traffic from submitters - this means
you can force SMTP AUTH etc. Allowing outbound 25 is just asking for
spammers to waste bandwidth and get my IPs blacklisted.
ok, it's not too hard
Hi Peter,
I think what I want things like blocked outbound port 25 traffic, while
allowing MSA,
what is MSA?
blocking common outbound virus traffic,
To distinguish virus traffic from normal traffic you need some sort of
application level gateway like squid for http traffic or an MTA for mail
Hi Siju,
The Port 113 was opened because the PF FAQ asked to open it for SMTP
Auth/Ident (TCP port 113): used by some services such as SMTP and IRC.
ICMP Echo Requests: the ICMP packet type used by ping(8).
I know that this is in the pf faq but I don't think that you really need it. I
Hi,
I'm just making my first experiences with authpf (OBSD 3.4 release) and
found something strange:
do I have to redefine macros in /etc/authpf/authpf.rules that are
already defined in /etc/pf.conf (with anchor authpf at the end of
pf.conf)?
I tried to use macros such as $ext_if but while
My pf/altq rules do not seem to work and I can't find any errors.
Here is the background.
are you running 3.3 release or current? If you're running release, you
probably have to patch the tun0 interface. Look here for some
information I've collected:
http://secspace.de/altq_on_tun.hmtl
I tried to setup queing based on the faq and website. But I just can't
get it to work. Downloading is great but as soon as I start to upload
my speed drops way down to about the same speed as the upload. I have
played around with the queue statements and bandwidth settings but no
luck. I am
Hi Trevor,
As I don't have a PPPoE setup to work with, I did my own testing with
just
tun0, and saw the spin effect. Below is a patch for if_tun.c, which
fixed
the problem I observed. I'd like to know if it fixes pppoe queueing
for anyone brave enough to try patches from me.
it works
Queuing does not currently work with tun(4)/pppoe. I have spent one
whole night playing w/ different options/config files to get empty
ackpri to work on my ADSL link (I am using pppoe on the gateway
itself). I've also played w/ different queuing schemes etc. 'pfctl
-vvsq' still shows all
OS: OpenBSD 3.3 release
arch: i386
kernel: GENERIC
# pfctl -gvsq
queue q_pri priority 7
[ pkts: 42838 bytes:2204648 dropped pkts: 0 bytes:
0 ][ qlength: 0/ 50 ]
[ qid=8 ifname=tun0
