diff options
author | Cullum Smith <cullum@sacredheartsc.com> | 2024-08-03 08:24:04 -0400 |
---|---|---|
committer | Cullum Smith <cullum@sacredheartsc.com> | 2024-08-03 08:24:04 -0400 |
commit | 8e386dac954408cc64d1d0715d73dec7905f5771 (patch) | |
tree | 63ac606a59c0814fcc8fcdaaee9070fb9899109d /files/etc | |
parent | 44df82b148cbb028ec2b48a429424dcfc49f88e8 (diff) | |
download | infrastructure-8e386dac954408cc64d1d0715d73dec7905f5771.tar.gz |
add usb tethering to laptop hostclass
Diffstat (limited to 'files/etc')
-rw-r--r-- | files/etc/pf.conf.freebsd | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/files/etc/pf.conf.freebsd b/files/etc/pf.conf.freebsd index 633f3ef..e01f49d 100644 --- a/files/etc/pf.conf.freebsd +++ b/files/etc/pf.conf.freebsd @@ -1,4 +1,8 @@ -egress = "${BOXCONF_DEFAULT_INTERFACE}" +$(if [ -n "${pf_egress_interfaces:-}" ]; then + printf 'egress = "{ %s }"\n' "$(join ', ' $pf_egress_interfaces)" + else + printf 'egress = "%s"\n' "$BOXCONF_DEFAULT_INTERFACE" + fi) allowed_tcp_ports = "{ $(join ', ' ${allowed_tcp_ports:-}) }" allowed_udp_ports = "{ $(join ', ' ${allowed_udp_ports:-}) }" acme_standalone_port = ${acme_standalone_port} @@ -7,6 +11,9 @@ nfscbd_port = ${nfscbd_port} set block-policy return set skip on lo +$([ -n "${pf_skip_interfaces:-}" ] && printf \ + 'set skip on %s\n' $pf_skip_interfaces) + scrub in on \$egress all fragment reassemble no-df $([ "${acme_standalone:-}" = true ] && echo \ |