summaryrefslogblamecommitdiffstats
path: root/etc/pf.conf
blob: 01bcfbe3afddfc1f11d29e724474b9a2eb933932 (plain) (tree) 
bff5f3e





















1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21





















                                                                   
#	$OpenBSD: pf.conf,v 1.55 2017/12/03 20:40:04 sthen Exp $
#
# See pf.conf(5) and /etc/examples/pf.conf

set skip on lo

block return	# block stateless traffic
pass		# establish keep-state

# By default, do not permit remote connections to X11
block return in on ! lo0 proto tcp to port 6000:6010

# Port build user does not need network
block return out log proto {tcp udp} user _pbuild

dns_server=192.168.1.69
match out on egress from vether0:network to any nat-to (egress)
pass in proto { udp tcp } from vether0:network to any port domain \
	rdr-to $dns_server port domain
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-08 03:14:31 +0000