Antivirus - PF (Packet Filter): Commands and Options
ABOUT COMANDS AND OPTIONS PF (PACKET FILTER)
Commands and Options
- pfctl-e -> active PF
- pfctl-d -> disables PF
- pfctl-f -> if there are no syntax errors, new rules are loaded in PF
# # Macros
# Internal interface (connected to the local network).
int_if = "xl0"
# # Options
# You set the default policy to return RSTs or ICMPs for traffic blocked
September block-policy return
# Ignore the loopback interface completely.
September skip on lo0
# # Rules rerouting
# NAT traffic on the interface group included within the default egress interface
# (Which is assigned the output interface the default route) from the local network
nat on egress from $ int_if: network to any -> (egress)
# # Filter Rules
# Default deny rule, all recorded in log blocked packets
block log all
# Pass all traffic to and from the local network, using quick to
# After the rules are not assessed for this case. Some rules restrict
# Local traffic more.
pass quick on $ int_if all
# Allows export of all traffic, maintaining the state so that responses
# Pass automatically. Many rules have more rules here, restricting
# Incoming and outgoing traffic on the external interface (egress).
pass out keep state
Comentarios