Add pf.conf

This commit is contained in:
Jake Bauer 2024-01-26 17:08:06 +01:00
parent 057a7b2aea
commit 9bf791caf5
1 changed files with 15 additions and 0 deletions

15
etc/pf.conf Normal file
View File

@ -0,0 +1,15 @@
# Don't filter on the loopback interface
set skip on lo
# Block all incoming connections by default, but allow outgoing
block all
pass out
# Allow ICMP packets (useful for pinging this host)
pass in proto icmp
# Allow SSH connections to this host
pass in proto tcp from any to any port ssh
# Port build user does not need network
block return out log proto {tcp udp} user _pbuild