Changeset 10589 in hybrid for branches/releng-9.0/nanobsd/files/etc/pf.proxy.conf

Timestamp:

Apr 26, 2012, 2:01:09 PM (13 years ago)

Author:

rick

Message:

Split hybrid and special proxy setup, as the proxy setup is highly custom and
somehow exotic, not useable in the hybrid setup (due to the gateway pain).

File:

• branches/releng-9.0/nanobsd/files/etc/pf.proxy.conf (copied) (copied from branches/releng-9.0/nanobsd/files/etc/pf.hybrid.conf ) (2 diffs)

branches/releng-9.0/nanobsd/files/etc/pf.proxy.conf

@@ -29 +29 @@
 ext_if="vr0"
 ext_if_net="vr0:network"
-ext_if_default_route="192.168.42.1"
+ext_if_gw="127.127.127.127"
 captive_portal_interfaces="wlan0"
 publicnat="http,https"
@@ -68 +68 @@
 
 # This quirck is needed to override the routing table default route (8) 
-pass out on !$ext_if route-to ($ext_if $ext_if_default_route) proto tcp from any to !$wl_net port {22, 80, 443} user != unknown keep state
-pass out on !$ext_if route-to ($ext_if $ext_if_default_route) proto udp from any to !$wl_net port {53} user != unknown keep state
+pass out on !$ext_if route-to ($ext_if $ext_if_gw) proto tcp from any to !$wl_net port {22, 80, 443} user != unknown keep state
+pass out on !$ext_if route-to ($ext_if $ext_if_gw) proto udp from any to !$wl_net port {53} user != unknown keep state
 
 # By default deny all outgoing traffic to avoid systems spamming the network (9)