pfctl -nf /etc/pf.conf Parse the file, but don't load it
pfctl -Nf /etc/pf.conf Load only the NAT rules from the file
pfctl -Rf /etc/pf.conf Load only the filter rules from the file
pfctl -sn Show the current NAT rules
pfctl -sr Show the current filter rules
pfctl -ss Show the current state table
pfctl -si Show filter stats and counters
pfctl -sa Show EVERYTHING it can show
pfctl -s nat Show NAT
pfctl -s info
pfctl -s all
sysctl net.inet.ip.forwarding=1
sysctl net.inet6.ip6.forwarding=1
Manipulating with pfctl
Tables can be manipulated on the fly by using pfctl(8). For instance, to add
entries to the
# pfctl -t spammers -T add 218.70.0.0/16
This will also create the
list the addresses in a table:
# pfctl -t spammers -T show
The -v argument can also be used with -Tshow to display statistics for each
table entry. To remove addresses from a table:
# pfctl -t spammers -T delete 218.70.0.0/16
Tidak ada komentar:
Posting Komentar