pf and scrubbing bubbles
J.D. Bronson
jbronson at wixb.com
Sat Jan 28 05:02:42 PST 2006
I am using this in my pf.conf (on 6.0) and was wondering if these settings
are appropriate.
While 'scrub' by itself is always recommended, I added a few more things
that seem to ought to be there?
I use this for all the NICs...WAN and LAN...
with the exception to remove filtering on loopback:
=======================================================
scrub all random-id reassemble tcp fragment reassemble
no scrub on lo0 all
=======================================================
anyone see any issues with this - especially since its on the WAN
and LAN NICs?
things run fine, but I thought it wouldnt hurt to ask the group.
-JD
More information about the freebsd-questions
mailing list