LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   *BSD (https://www.linuxquestions.org/questions/%2Absd-17/)
-   -   PF firewall equivalent of IP tables command (https://www.linuxquestions.org/questions/%2Absd-17/pf-firewall-equivalent-of-ip-tables-command-4175448931/)

tontoOz 02-06-2013 03:22 PM
PF firewall equivalent of IP tables command
 
I have configured apache in the conf file to work with user: apachez group: groupz.

To block outbound requests by the apache user (to stop naughty behavior RE wget/scripts from external sites) using iptables you would do something like:

iptables -A OUTPUT -m owner --uid-owner apachez -p tcp --dport 80 -j DROP
iptables -A OUTPUT -m owner --uid-owner apachez -p tcp --dport 443 -j DROP

I am not sure whether this should be using --dport (destination port) or --sport (source port) - I am fairly new to this.

However, I need to do this in the PF (packet filter) firewall not iptables.

Could someone please advise the command line(s) that would do the above in PF?

Regards.

Tinkster 02-10-2013 08:25 PM
Please post your thread in only one forum. Posting a single thread in the most relevant forum will make it easier for members to help you and will keep the discussion in one place. This thread is being closed because it is a duplicate.

http://www.linuxquestions.org/questi...nd-4175448820/


All times are GMT -5. The time now is 08:47 PM.