pf config

I'm reading through a SSH hardening guide, and one of their suggestions is that connection rate throttling is needed in order to protect against the DHEat denial-of-service attack. However, they only give iptables examples. Can anyone convert these to PF for me? iptables -I INPUT -p tcp...

Hi! I have this in my pf.conf (snippet) [...] table <intranet> { 192.168.178.0/24 192.168.178.0/24 10.8.0.0/24 10.8.0.0/24 192.168.1.0/24 192.168.1.0/24 } table <smartnet> { 192.168.10.0/24 192.168.10.0/24 } table <blocklist> persist file "/bla/blocklist_pf" [...] If I load the...

Hello, I have a request. I need to set up NAT on one interface. I am using two addressing schemes in one network: 192.168.2.0/24 and 192.168.8.0/24. This was done previously and I cannot change it at the moment. The router, which is based on FreeBSD, has an address of 192.168.2.1 and an alias on...

Hi, I am trying to follow this guide: https://www.vultr.com/docs/building-your-own-mail-server-with-freebsd-11 Unfortunately when copying the pf config and starting the daemon (or reloading the config with pfctl -f /usr/local/etc/pf.conf) I get this output: /usr/local/etc/pf.conf:27: syntax...