+设为首页 +添加到收藏夹
$ cat /etc/pf.conf 【相关文章:让你的SERV-U看起来专业点吧 】
【扩展阅读:FTP协议的分析和扩展 】# $freebsd: src/etc/pf.conf,v 1.1.2.1 2004/09/17 18:27:14 mlaier exp $ 【扩展信息:寻寻觅觅—揭开FTP无法访问网络之谜 】 # $openbsd: pf.conf,v 1.21 2003/09/02 20:38:44 david exp $ # # see pf.conf(5) and /usr/share/examples/pf for syntax and examples. # required order: options, normalization, queueing, translation, filtering. # macros and tables may be defined and used anywhere. # note that translation rules are first match while filter rules are last match. # macros: define common values, so they can be referenced and changed easily. #ext_if="vr0" # replace with actual external interface name i.e., dc0 ext_if="tun0" int_if="nv0" # replace with actual internal interface name i.e., dc1 #internal_net="10.1.1.1/8" #external_addr="192.168.1.1" # tables: similar to macros, but more flexible for many addresses. table <private> const { 10/8, 172.16/12, 192.168/16, 127/8, 255.255.255.255/32 } table <foo> { 10.0.0.0/8, !10.1.0.0/16, 192.168.0.0/24, 192.168.1.18 } # options: tune the behavior of pf, default values are given. #set timeout { interval 10, frag 30 } #set timeout { tcp.first 120, tcp.opening 30, tcp.established 86400 } #set timeout { tcp.closing 900, tcp.finwait 45, tcp.closed 90 } #set timeout { udp.first 60, udp.single 30, udp.multiple 60 } #set timeout { icmp.first 20, icmp.error 10 } #set timeout { other.first 60, other.single 30, other.multiple 60 } #set timeout { adaptive.start 0, adaptive.end 0 } #set limit { states 10000, frags 5000 } #set loginterface none ... 下一页