OpenBSD 4.0 pf scenario and questions
Network: Openbsd Gateway with 2 NiC's xl0 connected to cable modem (dhclient) fxp0 connected to hub (dhcpd and bind)
Computers connected to hub computer1 - 192.168.100.2 computer2 - 192.168.100.3
Objectives I am having trouble with:
1) Allow some traffic from computer1 to internet (port 80) 2) Disallow some traffic from computer1 to internet (the rest) 3) Allow all traffic from computer2 to internet 4) Allow some traffic into bsd box (port 80) 5) Forward packets from internet to computer2 ports (6000, 50000, 50001)My guesses:
1) pass out quick from $computer1 port 802) block out all
3) pass out quick from $computer24) bsd_allowed="{ 80 }" pass in quick on $ext_if inet from any to $ext_if port $bsd_allowed
5) forwarded_cpu="{ 6000, 50000, 50001 }" rdr on $ext_if from any to $ext_if port $forwarded_cpu2 ->$computer2