mirrors/cheat-sheets
1
0
Fork 0
mirror of https://github.com/yuriskinfo/cheat-sheets.git synced 2025-12-21 21:33:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

ongoing additions, changes, and fixes

Browse Source
This commit is contained in:
Yuri Slobodyanyuk
2021-03-20 15:25:58 +00:00
parent 27bb2f5d28
commit f6861b03fb
2 changed files with 800 additions and 427 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
PF-firewall-configuration-and-debug-cheat-sheet.adoc
View File

@@ -32,6 +32,9 @@ a| Flush, accordingly:
- `nat` NAT rules only
- `states` Stateful table (but again - active connections stay alive)
|*pfct -k <source IP of connection to clear> [-k <destination>]*
|Kill an active connection from the state table. You can specify IP address as the 1st selector to the 1st `-k` and optionally, destination selector with another `-k` key. `0.0.0.0/0` as a wildcard can be used. E.g. to clear all connections from any to 10.10.10.13/32 `pfctl -k 0.0.0.0/0 10.10.10.13/32`. To add selectors, look at available ones via *pfctl -s state*, e.g.
|*pfctl -z*
|Clear all per rule statistics/counters

1224
PF-firewall-configuration-and-debug-cheat-sheet.pdf
View File

File diff suppressed because it is too large Load Diff