Traskalata Posted June 8, 2012 Posted June 8, 2012 Задача дать больше потоков на 80 порт, ограничив на другие Итак формирую правила ee /etc/pf.conf set limit states 128000 set optimization aggressive nat pass on sk0 from 10.0.0.0/8 to any -> sk0 nat pass on sk0 from 192.168.0.0/16 to any -> sk0 table <me> { self } table <users_bad> { 10.0.0.0/8 } pass quick on lo0 all pass in quick on { $int_if ng } proto { tcp udp } from any to <me> keep state pass in quick proto tcp from any to <me> port { 22 80 443 } keep state pass in quick on { $int_if ng } proto tcp from <users_bad> to any port 80 keep state (source-track rule, max-src-states 200) pass in quick on { $int_if ng } proto { tcp udp } from <users_bad> to any keep state (source-track rule, max-src-states 100) но что-то не работает, где я ошибся? Вставить ник Quote
Traskalata Posted June 8, 2012 Author Posted June 8, 2012 сам себе отвечаю. По-моему я не определил переменные. Вставить ник Quote
.png.5d2afa2996cc6a85d0f2c09b92dd0a28.png)
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.