authpf.8 - OpenGrok cross reference for /freebsd-src/contrib/pf/authpf/authpf.8

Lines Matching +full:inside +full:- +full:secure
4 .\" Copyright (c) 1998-2007 Bob Beck (beck@openbsd.org>.  All rights reserved.
23 .Nm authpf-noip
27 .Nm authpf-noip
39 Combined with properly set up filter rules and secure switches,
52 .Nm authpf-noip
72 .Nm authpf-noip ,
76 .Pa /usr/sbin/authpf-noip .
100 process stores its rules in a separate ruleset inside a
116 .Bd -literal -offset indent
117 nat-anchor "authpf/*"
118 rdr-anchor "authpf/*"
119 binat-anchor "authpf/*"
150 Per-user rules from the
152 directory are intended to be used when non-default rules
172 .Bl -tag -width Ds
193 - it is possible to set the gateway to explicitly allow users who have
237 through which users connect is secure.
247 this, since they are not secure.
268 (non-administrative) users using the machine.
303 \- To illustrate the user-specific access control
312 powers-that-be, they can prohibit him from using the gateway by creating
332 If bob once again manages to annoy the powers-that-be, they can ban him from
340 \- It is often desirable to interface with a
351 .Bd -literal -offset indent
352 shell-default:shell=/bin/csh
375 \- As stated earlier,
380 .Bd -literal -offset indent
390 \- Once authenticated, the user is shown the contents of
392 This message may be a screen-full of the appropriate use policy, the contents
396 .Bd -literal -offset indent
404 .Bd -literal -offset indent
406 problem so we can fix it, please phone 1-900-314-1597 or send
411 \- In areas where this gateway is used to protect a
413 well as the per-user rules should probably allow very few things beyond
419 On a securely switched network, with plug-in jacks for visitors who are
421 In this context, a secure switch is one that tries to prevent address table
426 .Bd -literal
431 nat-anchor "authpf/*"
432 rdr-anchor "authpf/*"
433 binat-anchor "authpf/*"
443 \- This example
447 .Bd -literal
456 \- This example
460 .Bd -literal
464 # rdr ftp for proxying by ftp-proxy(8)
466       -> 127.0.0.1 port 8021
479 \- The following
482 .Bd -literal
487 nat on $ext_if from $user_ip to any tag $user_ip -> $ext_addr
497 .Bd -literal
498 # tcpdump -n -e -ttt -i pflog0
505 \- Simple
512 .Bd -literal
525 .Bd -literal
528 rdr-anchor "authpf/*" from <authpf_users>
532 \- normally
542 .Nm authpf-noip
548 .Bd -literal
556 .Bl -tag -width "/etc/authpf/authpf.conf" -compact
568 .Xr ftp-proxy 8