Quote:
Originally Posted by TCH
Thanks, so this has to go into pf.conf?
|
Yes, the default PF configuration file is /etc/pf.conf.
Quote:
|
Also, will not this block all on rl0 too? I only would like to block everything on msk0 and apply no filter on rl0.
|
It is very easy for us to misunderstand one another, which is why I started with the caveat about understanding your use case. I'd interpreted your first post above as blocking all inbound traffic except the two destination ports on msk0. To block all incoming traffic only on msk0, revise the first line accordingly:
Code:
block in on msk0
pass in proto tcp to (msk0) port {80 443}
For more information on configuring PF, you should start with the
PF User's Guide.