Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Probably yet another IPtables question

Probably yet another IPtables question 12 years 2 months ago #5308

Hiya, I am running an openBSD box in between my router and the rest of my network. Would IPtables be the best implementation? (suggestions appreciated) If so, could someone point me to a general tutorial on the IPtables syntax. I know what I want as far as rules.. just pulling it off seamlessly is the problem. Thanx again in advance.
"He who breaks something to find out what it is, has left the path of wisdom."

Gandalf the Grey
The administrator has disabled public write access.

Re: Probably yet another IPtables question 12 years 2 months ago #5309

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
You can not use iptables in OpenBSD as iptables are just an interface for netfliter, which is a linux kernel "packet mangling" infrastructure just like pf is for openbsd. So if you use OpenBSD you practically have to stick with PF, which is also awesome!

Everything you need to get going with PF is in this howto:
-pf-howto

also a good reference is the man page (man pf.conf), as well as the official faq:
-official faq

Finally, there is a great howto for the previous version of PF, the IPF hich uses mostly the same syntax.
- ipf-howto
The administrator has disabled public write access.

Re: Probably yet another IPtables question 12 years 2 months ago #5310

hey! thats why I couldnt find any source or installs for IPtables that were interoperable with bsd variants!! lol.. I must say I can't believe I thought I could use it. Well this helps out tons... the ruleset will be done soon.. Im taking quite a finicky approach closing as many holes as I can.. I might end up posting the source when Im done.. thanx again!
"He who breaks something to find out what it is, has left the path of wisdom."

Gandalf the Grey
The administrator has disabled public write access.

Re: Probably yet another IPtables question 12 years 2 months ago #5312

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
good luck with the implementation, let us know if you meet any difficulties :)
The administrator has disabled public write access.

Re: Probably yet another IPtables question 12 years 2 months ago #5315

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
Post your rules, I havent looked over PF much..
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.
Time to create page: 0.080 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup