Hello OpenBSD-misc,
I have a newbie question in pf that Ive been trying to debug on what would
be wrong with my ruleset. Iam trying to have the users that are on $int_if
only have ports 80 & 52 opened out, and users on $int_if be able to have
less restrictions and more ports out. So far I have something like this but
it isnt working:
ext_if = "re1"
int_if = "re0"
int_if2 = "re2"
set skip on lo
scrub in
nat on re1 from re0:network to any -> re1
nat on re1 from re2:network to any -> re1
block all
pass quick on $ext_if // I have added this so that the firewall itself has
full internet access
#pass in quick on $int_if
pass out log quick on $ext_if inet proto { tcp, udp } from ($ext_if) to any
\
port 53 keep state
pass out log quick on $ext_if inet proto { tcp } from ($ext_if) to any \
port 80 keep state
I appreciate the help...
Andres
