Исходное сообщение
"не доступны сервера снаружи" Отправлено eugene, 14-Янв-07 13:06
неужели никто ничего не может сказать :(( привожу pf.conf: ext_if="vr0"     int_if="xl0"   tcp_services="{22,25,110}" udp_services="{domain,ntp}" icmp_types="echoreq" table <natusers> {192.168.1.2, 192.168.1.3, 192.168.1.4} set block-policy return set loginterface $ext_if set skip on lo # scrub scrub in # NAT/RDR nat on $ext_if from <natusers> to any port {!=80 !=8080 !=443} -> ($ext_if) nat-anchor "ftp-proxy/*" rdr-anchor "ftp-proxy/*" # FTP rdr pass on $int_if proto tcp to port ftp -> 127.0.0.1 port 8021 # FILTER RULES block in log pass out keep state anchor "ftp-proxy/*" antispoof quick for {lo $int_if} pass in on $ext_if inet proto tcp from any to ($ext_if) port $tcp_services flags S/SA keep state pass inet proto {tcp,udp} to any port $udp_services keep state # PING pass in inet proto icmp all icmp-type $icmp_types keep state # TRACEROUTE pass out on $ext_if inet proto udp from any to any port 33433><33626 keep state # LOCALNET pass quick on $int_if # pfctl -ss No ALTQ support in kernel ALTQ related functions disabled self tcp 192.168.1.3:57790 -> 192.168.1.2:6666       ESTABLISHED:ESTABLISHED self tcp 192.168.1.3:3128 <- 192.168.1.4:1115       ESTABLISHED:ESTABLISHED self tcp 83.151.3.115:25 <- 142.58.101.28:33139       CLOSED:SYN_SENT self tcp 83.151.3.115:25 <- 130.225.16.35:45601       CLOSED:SYN_SENT self tcp 83.151.3.115:25 <- 217.66.16.37:51601       CLOSED:SYN_SENT self tcp 83.151.3.115:51006 -> 64.12.25.208:443       ESTABLISHED:ESTABLISHED self tcp 83.151.3.115:25 <- 217.30.252.242:57013       CLOSED:SYN_SENT self pfsync 83.151.3.115 -> 0.0.0.0       SINGLE:NO_TRAFFIC