Da ne otvaram novu temu, evo jos jednog finog uputstva za podesavanje firewall-a iz konzole: [url=http://www.berkeleylug.com/?p=137]Simple firewall script tutorial for the command line[/url].
A evo kako PF pravila izgledaju za moj laptop. Jedini alat koji je koriscen je nvi editor.
[code]
ext_if=”rl0″
tcp_services = “{ssh, sftp, imap, imaps, smtp, 587,domain, ntp, www, https}”
udp_services= “{domain, ntp}”
set skip on lo
set loginterface $ext_if
scrub in all random-id fragment reassemble
block return in log all
block out all
antispoof quick for $ext_if
pass out quick on $ext_if proto tcp to any port $tcp_services
pass out quick on $ext_if proto udp to any port $udp_services
[/code]