Hi Lewis,
Possibly due to insufficient caffeine at this end I am not entirely
sure I fully grasp the content and context here, but I would recommend reading,
in somewhat random order,
1. man pf.conf (https://man.openbsd.org/pf.conf) (you may want to search there for urpf)
2. the PF user guide (https://www.openbsd.org/faq/pf/index.html)
3. the slides from our latest "Network Management with the OpenBSD PF toolset" tutorial (https://home.nuug.no/~peter/pftutorial/#1)
4. the slides from the pre-revision PF tutorial (https://home.nuug.no/~peter/pf/newest/)
5. various books and articles referenced in the previous, and perhaps as a reasonable starting point, The Book of PF (https://nostarch.com/pf3)
I'm fairly confident you can get a working and quite comfortably maintainable setup
going with the help of these resources.
- Peter
On Sun, Apr 09, 2023 at 02:42:02AM -0700, louise9841@gmail.com wrote:
> Hello, I am new to OpenBSD in terms of using it as a home router/firewall. Im trying to implement the OpenBSD equivalent or similar way of doing things like I did on my Linux Router. Are there are equivalent ways/programs for the following:
>
>
> 1. Reverse Path Filter (Like on Linux).
>
> 2. Protection against DHCP Starvation attacks.
>
> 3. DHCP Snooping
>
> 4. Reply-Only ARP system with features like(automatically adding arps for leases) that keep people from setting a static ip on the network and bypassing the queueing done by pf.
>
>
> P.S.: If there are any ways of doing these options above can you point me to the right documentation as I have tried to research but couldn't find any thing on these subjects listed above.
>
> Thank you,
> Lewis
>
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
https://bsdly.blogspot.com/ https://www.bsdly.net/ https://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
No comments:
Post a Comment