Re: PF configuration for munin

To: netbsd-users%netbsd.org@localhost
Subject: Re: PF configuration for munin
From: Ian Clark <mrrooster%gmail.com@localhost>
Date: Mon, 23 Jan 2012 15:31:28 +0000

2012/1/13 "三輪晋(Miwa Susumu)" <miwarin%gmail.com@localhost>:
[snip]
> ----
> ext_if = "pcn0"
> lo_if = "lo0"
> tcp_services = "{ ssh, www, smtp, domain, munin, netbios-ssn,
> microsoft-ds }"
> udp_services = "{ domain, netbios-ns, netbios-dgm }"
> priv_nets = "{ 192.168.0.0/16, 172.16.0.0/12, 10.0.0.0/8 }"
> localhost="127.0.0.1"
>
> pass in on $ext_if inet proto tcp from any to ($ext_if) port
> $tcp_services flags S/SA keep state
> pass in on $ext_if inet proto udp from any to ($ext_if) port $udp_services
> ----
>
Do you have any rules after this that would be blocking the traffic?

You could try adding the 'quick' keyword to the rule, which will stop
any further rules being processed if the rule matches...

pass in quick on.....

Cheers,

Ian

Follow-Ups:
- Re: PF configuration for munin
  - From: 三輪晋( Miwa Susumu )

References:
- PF configuration for munin
  - From: "三輪晋(Miwa Susumu)"

Prev by Date: Re: ongoing major problems with NetBSD-5 and LOCKDEBUG on multi-core system (mfi(4) related?)
Next by Date: Re: telnetd problem?
Previous by Thread: PF configuration for munin
Next by Thread: Re: PF configuration for munin
Indexes:

Home | Main Index | Thread Index | Old Index